Cisco iOS vulnerabilities

581 known vulnerabilities affecting cisco/ios.

Total CVEs

581

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL32HIGH327MEDIUM211LOW11

Vulnerabilities

Page 12 of 30

CVE-2015-6294MEDIUMCVSS 6.1v15.2\(2\)ev15.2\(2\)e1+3 more2015-09-18

CVE-2015-6294 [MEDIUM] CWE-399 CVE-2015-6294: Cisco IOS 15.2(3)E and earlier and IOS XE 3.6(2)E and earlier allow remote attackers to cause a deni Cisco IOS 15.2(3)E and earlier and IOS XE 3.6(2)E and earlier allow remote attackers to cause a denial of service (functionality loss) via crafted Cisco Discovery Protocol (CDP) packets, aka Bug ID CSCuu25770.

nvd

CVE-2015-0681HIGHCVSS 7.1v12.2\(33\)xn1v12.2\(44\)sq1+7 more2015-07-24

CVE-2015-0681 [HIGH] CWE-399 CVE-2015-0681: The TFTP server in Cisco IOS 12.2(44)SQ1, 12.2(33)XN1, 12.4(25e)JAM1, 12.4(25e)JAO5m, 12.4(23)JY, 15 The TFTP server in Cisco IOS 12.2(44)SQ1, 12.2(33)XN1, 12.4(25e)JAM1, 12.4(25e)JAO5m, 12.4(23)JY, 15.0(2)ED1, 15.0(2)EY3, 15.1(3)SVF4a, and 15.2(2)JB1 and IOS XE 2.5.x, 2.6.x, 3.1.xS, 3.2.xS, 3.3.xS, 3.4.xS, and 3.5.xS before 3.6.0S; 3.1.xSG, 3.2.xSG, and 3.3.xSG before 3.4.0SG; 3.2.xSE before 3.3.0SE; 3.2.xXO before 3.3.0XO; 3.2.xSQ; 3.3.xSQ; and 3.4.x

nvd

CVE-2015-4199HIGHCVSS 7.1v15.3s2015-06-27

CVE-2015-4199 [HIGH] CWE-362 CVE-2015-4199: Race condition in the IPv6-to-IPv4 functionality in Cisco IOS 15.3S in the Performance Routing Engin Race condition in the IPv6-to-IPv4 functionality in Cisco IOS 15.3S in the Performance Routing Engine (PRE) module on UBR devices allows remote attackers to cause a denial of service (NULL pointer free and module crash) by triggering intermittent connectivity with many IPv6 CPE devices, aka Bug ID CSCug47366.

nvd

CVE-2015-4200HIGHCVSS 7.8v15.3\(3\)sv15.3s2015-06-23

CVE-2015-4200 [HIGH] CWE-399 CVE-2015-4200: Memory leak in the IPv6-to-IPv4 functionality in Cisco IOS 15.3S in the Performance Routing Engine ( Memory leak in the IPv6-to-IPv4 functionality in Cisco IOS 15.3S in the Performance Routing Engine (PRE) module on UBR devices allows remote attackers to cause a denial of service (memory consumption) by triggering an error during CPE negotiation, aka Bug ID CSCug00885.

nvd

CVE-2015-4203MEDIUMCVSS 5.4v12.2\(33\)schv12.2sch2015-06-23

CVE-2015-4203 [MEDIUM] CWE-362 CVE-2015-4203: Race condition in Cisco IOS 12.2SCH in the Performance Routing Engine (PRE) module on uBR10000 devic Race condition in Cisco IOS 12.2SCH in the Performance Routing Engine (PRE) module on uBR10000 devices, when NetFlow and an MPLS IPv6 VPN are configured, allows remote attackers to cause a denial of service (PXF process crash) by sending malformed MPLS 6VPE packets quickly, aka Bug ID CSCud83396.

nvd

CVE-2015-4202MEDIUMCVSS 5.0v12.2\(33\)schv12.2sch2015-06-20

CVE-2015-4202 [MEDIUM] CWE-200 CVE-2015-4202: Cisco IOS 12.2SCH on uBR10000 router Cable Modem Termination Systems (CMTS) does not properly restri Cisco IOS 12.2SCH on uBR10000 router Cable Modem Termination Systems (CMTS) does not properly restrict access to the IP Detail Record (IPDR) service, which allows remote attackers to obtain potentially sensitive MAC address and network-utilization information via crafted IPDR packets, aka Bug ID CSCua39203.

nvd

CVE-2015-4185MEDIUMCVSS 6.9v15.2\(4\)m6v15.2m2015-06-13

CVE-2015-4185 [MEDIUM] CWE-264 CVE-2015-4185: The TCL interpreter in Cisco IOS 15.2 does not properly maintain the vty state, which allows local u The TCL interpreter in Cisco IOS 15.2 does not properly maintain the vty state, which allows local users to gain privileges by starting a session very soon after a TCL script execution, aka Bug ID CSCuq24202.

nvd

CVE-2015-0771MEDIUMCVSS 6.3v12.2\(33\)sxj8v12.2sxj2015-06-12

CVE-2015-0771 [MEDIUM] CWE-399 CVE-2015-0771: The IKE implementation in the WS-IPSEC-3 service module in Cisco IOS 12.2 on Catalyst 6500 devices a The IKE implementation in the WS-IPSEC-3 service module in Cisco IOS 12.2 on Catalyst 6500 devices allows remote authenticated users to cause a denial of service (device reload) by sending a crafted message during IPsec tunnel setup, aka Bug ID CSCur70505.

nvd

CVE-2015-0731MEDIUMCVSS 6.1v15.3\(3\)s1v15.3s2015-05-16

CVE-2015-0731 [MEDIUM] CWE-399 CVE-2015-0731: The ISDN implementation in Cisco IOS 15.3S allows remote attackers to cause a denial of service (dev The ISDN implementation in Cisco IOS 15.3S allows remote attackers to cause a denial of service (device reload) via malformed Q931 SETUP messages, aka Bug ID CSCut37890.

nvd

CVE-2015-0709MEDIUMCVSS 6.8v15.5\(3\)sv15.5s2015-04-29

CVE-2015-0709 [MEDIUM] CWE-399 CVE-2015-0709: Cisco IOS 15.5S and IOS XE allow remote authenticated users to cause a denial of service (device cra Cisco IOS 15.5S and IOS XE allow remote authenticated users to cause a denial of service (device crash) by leveraging knowledge of the RADIUS secret and sending crafted RADIUS packets, aka Bug ID CSCur21348.

nvd

CVE-2015-0708MEDIUMCVSS 6.1v15.4\(3\)sv15.4\(3\)s1+5 more2015-04-29

CVE-2015-0708 [MEDIUM] CWE-399 CVE-2015-0708: Cisco IOS 15.4S, 15.4SN, and 15.5S and IOS XE 3.13S and 3.14S allow remote attackers to cause a deni Cisco IOS 15.4S, 15.4SN, and 15.5S and IOS XE 3.13S and 3.14S allow remote attackers to cause a denial of service (device crash) by including an IA_NA option in a DHCPv6 Solicit message on the local network, aka Bug ID CSCur29956.

nvd

CVE-2015-0687MEDIUMCVSS 6.3v15.1\(2\)sg4v15.1sg2015-04-03

CVE-2015-0687 [MEDIUM] CWE-399 CVE-2015-0687: The SNMP implementation in Cisco IOS 15.1(2)SG4 on Catalyst 4500 devices, when single-switch Virtual The SNMP implementation in Cisco IOS 15.1(2)SG4 on Catalyst 4500 devices, when single-switch Virtual Switching System (VSS) is configured, allows remote authenticated users to cause a denial of service (device crash) by performing SNMP polling, aka Bug ID CSCuq04574.

nvd

CVE-2015-0635CRITICALCVSS 9.0v12.2\(33\)ird1v12.2\(33\)ire3+27 more2015-03-26

CVE-2015-0635 [CRITICAL] CWE-20 CVE-2015-0635: The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15 The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.xS through 3.13.xS before 3.13.1S allows remote attackers to spoof Autonomic Networking Registration Authority (ANRA) responses, and consequently bypass intended device and node access restrictions or cause a denial of serv

nvd

CVE-2015-0646HIGHCVSS 7.8v12.2v12.4+5 more2015-03-26

CVE-2015-0646 [HIGH] CWE-399 CVE-2015-0646: Memory leak in the TCP input module in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3 Memory leak in the TCP input module in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS through 3.10.xS before 3.10.5S, and 3.11.xS and 3.12.xS before 3.12.3S allows remote attackers to cause a denial of service (memory consumption or device reload) by sending crafted TCP packets over (1) IPv4 or (2) IPv6, aka

nvd

CVE-2015-0636HIGHCVSS 7.8v12.2\(33\)ird1v12.2\(33\)ire3+21 more2015-03-26

CVE-2015-0636 [HIGH] CWE-20 CVE-2015-0636: The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15 The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.xS through 3.13.xS before 3.13.1S allows remote attackers to cause a denial of service (disrupted domain access) via spoofed AN messages that reset a finite state machine, aka Bug ID CSCup62293.

nvd

CVE-2015-0647HIGHCVSS 7.8v12.2\(33\)ird1v12.2\(33\)ire3+57 more2015-03-26

CVE-2015-0647 [HIGH] CWE-20 CVE-2015-0647: Cisco IOS 12.2, 12.4, 15.0, 15.2, and 15.3 allows remote attackers to cause a denial of service (dev Cisco IOS 12.2, 12.4, 15.0, 15.2, and 15.3 allows remote attackers to cause a denial of service (device reload) via malformed Common Industrial Protocol (CIP) UDP packets, aka Bug ID CSCum98371.

nvd

CVE-2015-0650HIGHCVSS 7.8v12.2v12.4+5 more2015-03-26

CVE-2015-0650 [HIGH] CWE-20 CVE-2015-0650: The Service Discovery Gateway (aka mDNS Gateway) in Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, an The Service Discovery Gateway (aka mDNS Gateway) in Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 3.9.xS and 3.10.xS before 3.10.4S, 3.11.xS before 3.11.3S, 3.12.xS before 3.12.2S, and 3.13.xS before 3.13.1S allows remote attackers to cause a denial of service (device reload) by sending malformed mDNS UDP packets over (1) IPv4 or (2)

nvd

CVE-2015-0643HIGHCVSS 7.8v12.2v12.4+5 more2015-03-26

CVE-2015-0643 [HIGH] CWE-399 CVE-2015-0643: Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 2.5.x, 2.6.x, 3.1.xS through 3.12. Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 2.5.x, 2.6.x, 3.1.xS through 3.12.xS before 3.12.3S, 3.2.xE through 3.7.xE before 3.7.1E, 3.3.xSG, 3.4.xSG, and 3.13.xS before 3.13.2S allow remote attackers to cause a denial of service (memory consumption and device reload) by sending malformed IKEv2 packets over (1) IPv4 or (2) IPv6, a

nvd

CVE-2015-0638HIGHCVSS 7.1v12.2\(33\)ird1v12.2\(33\)ire3+29 more2015-03-26

CVE-2015-0638 [HIGH] CWE-20 CVE-2015-0638: Cisco IOS 12.2, 12.4, 15.0, 15.2, and 15.3, when a VRF interface is configured, allows remote attack Cisco IOS 12.2, 12.4, 15.0, 15.2, and 15.3, when a VRF interface is configured, allows remote attackers to cause a denial of service (interface queue wedge) via crafted ICMPv4 packets, aka Bug ID CSCsi02145.

nvd

CVE-2015-0637HIGHCVSS 7.8v12.2\(33\)ird1v12.2\(33\)ire3+26 more2015-03-26

CVE-2015-0637 [HIGH] CWE-20 CVE-2015-0637: The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15 The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.xS through 3.13.xS before 3.13.1S allows remote attackers to cause a denial of service (device reload) via spoofed AN messages, aka Bug ID CSCup62315.

nvd

← Previous12 / 30Next →