Cisco Ios Xe Software vulnerabilities

CVE-2019-1742 [MEDIUM] CWE-16 CVE-2019-1742: A vulnerability in the web UI of Cisco IOS XE Software could allow an unauthenticated, remote attack A vulnerability in the web UI of Cisco IOS XE Software could allow an unauthenticated, remote attacker to access sensitive configuration information. The vulnerability is due to improper access control to files within the web UI. An attacker could exploit this vulnerability by sending a malicious request to an affected device. A successful exploit coul

CVE-2019-1760 [MEDIUM] CWE-20 CVE-2019-1760: A vulnerability in Performance Routing Version 3 (PfRv3) of Cisco IOS XE Software could allow an una A vulnerability in Performance Routing Version 3 (PfRv3) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the affected device to reload. The vulnerability is due to the processing of malformed smart probe packets. An attacker could exploit this vulnerability by sending specially crafted smart probe packets at the affect

CVE-2018-15372 [HIGH] CWE-284 CVE-2018-15372: A vulnerability in the MACsec Key Agreement (MKA) using Extensible Authentication Protocol-Transport A vulnerability in the MACsec Key Agreement (MKA) using Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) functionality of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to bypass authentication and pass traffic through a Layer 3 interface of an affected device. The vulnerability is due to a logic error in

CVE-2018-0470 [HIGH] CWE-399 CVE-2018-0470: A vulnerability in the web framework of Cisco IOS XE Software could allow an unauthenticated, remote A vulnerability in the web framework of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a buffer overflow condition on an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to the affected software improperly parsing malformed HTTP packets that are destined to a device. An attacker

CVE-2018-0471 [HIGH] CWE-400 CVE-2018-0471: A vulnerability in the Cisco Discovery Protocol (CDP) module of Cisco IOS XE Software Releases 16.6. A vulnerability in the Cisco Discovery Protocol (CDP) module of Cisco IOS XE Software Releases 16.6.1 and 16.6.2 could allow an unauthenticated, adjacent attacker to cause a memory leak that may lead to a denial of service (DoS) condition. The vulnerability is due to incorrect processing of certain CDP packets. An attacker could exploit this vulnerabili

CVE-2018-0481 [MEDIUM] CWE-77 CVE-2018-0481: A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attac A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability exist because the affected software improperly sanitizes command arguments, failing to prevent access to certain internal data structures

CVE-2018-0476 [MEDIUM] CWE-399 CVE-2018-0476: A vulnerability in the Network Address Translation (NAT) Session Initiation Protocol (SIP) Applicati A vulnerability in the Network Address Translation (NAT) Session Initiation Protocol (SIP) Application Layer Gateway (ALG) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper processing of SIP packets in transit while NAT is performed on an affected device

CVE-2018-0480 [MEDIUM] CWE-362 CVE-2018-0480: A vulnerability in the errdisable per VLAN feature of Cisco IOS XE Software could allow an unauthent A vulnerability in the errdisable per VLAN feature of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause the device to crash, leading to a denial of service (DoS) condition. The vulnerability is due to a race condition that occurs when the VLAN and port enter an errdisabled state, resulting in an incorrect state in the so

CVE-2018-15371 [MEDIUM] CWE-284 CVE-2018-15371: A vulnerability in the shell access request mechanism of Cisco IOS XE Software could allow an authen A vulnerability in the shell access request mechanism of Cisco IOS XE Software could allow an authenticated, local attacker to bypass authentication and gain unrestricted access to the root shell of an affected device. The vulnerability exists because the affected software has insufficient authentication mechanisms for certain commands. An attacker

CVE-2018-15374 [MEDIUM] CWE-347 CVE-2018-15374: A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an authentica A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an authenticated, local attacker to install a malicious software image or file on an affected device. The vulnerability is due to the affected software improperly verifying digital signatures for software images and files that are uploaded to a device. An attacker

CVE-2018-0469 [MEDIUM] CWE-415 CVE-2018-0469: A vulnerability in the web user interface of Cisco IOS XE Software could allow an unauthenticated, r A vulnerability in the web user interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to a double-free-in-memory handling by the affected software when specific HTTP requests are processed. An attacker could exploit this vulnerability by sending specific HTTP

CVE-2018-0477 [MEDIUM] CWE-77 CVE-2018-0477: A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attac A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability exist because the affected software improperly sanitizes command arguments, failing to prevent access to certain internal data structures

CVE-2018-15368 [MEDIUM] CWE-20 CVE-2018-15368: A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attac A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to the underlying Linux shell of an affected device and execute arbitrary commands with root privileges on the device. The vulnerability is due to the affected software improperly sanitizing command arguments to prevent modifications

CVE-2018-0152 [HIGH] CWE-264 CVE-2018-0152: A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to gain elevated privi A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to gain elevated privileges on an affected device. The vulnerability exists because the affected software does not reset the privilege level for each web UI session. An attacker

CVE-2017-6738 [HIGH] CWE-119 CVE-2017-6738: The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains mu The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected

CVE-2017-6742 [HIGH] CWE-119 CVE-2017-6742: A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected system or to remotely execute code. An attacker could exploit this vulnerability by sending a crafted SNMP packet to the affected device. The vulnerability is due to a buffer overflow in the affected code area. The vulnerabili

CVE-2017-6741 [HIGH] CWE-119 CVE-2017-6741: A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected system or to remotely execute code. An attacker could exploit this vulnerability by sending a crafted SNMP packet to the affected device. The vulnerability is due to a buffer overflow in the affected code area. The vulnerabili

CVE-2017-6615 [MEDIUM] CWE-399 CVE-2017-6615: A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE 3 A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE 3.16 could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to a race condition that could occur when the affected software processes an SNMP read request that contains certain criteria for a specific object