Cisco iOS vulnerabilities
594 known vulnerabilities affecting cisco/ios.
Total CVEs
594
CISA KEV
37
actively exploited
Public exploits
30
Exploited in wild
37
Severity breakdown
CRITICAL32HIGH327MEDIUM211LOW11UNKNOWN13
Vulnerabilities
Page 29 of 30
CVE-2001-1434MEDIUMCVSS 5.0v12.0v12.0\(1\)+199 more2001-02-28
CVE-2001-1434 [MEDIUM] CVE-2001-1434: Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topolo
Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created.
nvd
CVE-2000-0984MEDIUMCVSS 5.0PoCv12.0tv12.0w5+22 more2000-12-19
CVE-2000-0984 [MEDIUM] CVE-2000-0984: The HTTP server in Cisco IOS 12.0 through 12.1 allows local users to cause a denial of service (cras
The HTTP server in Cisco IOS 12.0 through 12.1 allows local users to cause a denial of service (crash and reload) via a URL containing a "?/" string.
nvd
CVE-2000-0700MEDIUMCVSS 5.0v11.2v11.2\(8\)+13 more2000-10-20
CVE-2000-0700 [MEDIUM] CVE-2000-0700: Cisco Gigabit Switch Routers (GSR) with Fast Ethernet / Gigabit Ethernet cards, from IOS versions 11
Cisco Gigabit Switch Routers (GSR) with Fast Ethernet / Gigabit Ethernet cards, from IOS versions 11.2(15)GS1A up to 11.2(19)GS0.2 and some versions of 12.0, do not properly handle line card failures, which allows remote attackers to bypass ACLs or force the interface to stop forwarding packets.
nvd
CVE-2000-0345LOWCVSS 2.1v9.14v11.1+46 more2000-05-03
CVE-2000-0345 [LOW] CVE-2000-0345: The on-line help system options in Cisco routers allows non-privileged users without "enabled" acces
The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command.
nvd
CVE-2000-0380HIGHCVSS 7.1PoCv11.1v11.2+37 more2000-04-26
CVE-2000-0380 [HIGH] CWE-20 CVE-2000-0380: The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attac
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.
nvd
CVE-2000-0268MEDIUMCVSS 5.0v11.3aav12.0\(2\)+11 more2000-04-20
CVE-2000-0268 [MEDIUM] CVE-2000-0268: Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON
Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot.
nvd
CVE-1999-1175HIGHCVSS 7.5≤ 11.21999-12-31
CVE-1999-1175 [HIGH] CVE-1999-1175: Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use
Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use authentication, which allows remote attackers to redirect HTTP traffic to arbitrary hosts via WCCP packets to UDP port 2048.
nvd
CVE-1999-1465HIGHCVSS 7.5≤ 11.31999-12-31
CVE-1999-1465 [HIGH] CVE-1999-1465: Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows re
Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled input interface to an output interface with a logical subinterface, as described by Cisco bug CSCdk43862.
nvd
CVE-1999-1464HIGHCVSS 7.5v11.1ccv11.1ct1999-12-31
CVE-1999-1464 [HIGH] CVE-1999-1464: Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast switching (DFS) enabled allows re
Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled interface to an interface that does not have DFS enabled, as described by Cisco bug CSCdk35564.
nvd
CVE-1999-1129HIGHCVSS 7.5v11.2\(8\)sa51999-09-01
CVE-1999-1129 [HIGH] CVE-1999-1129: Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into
Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the trunking tag.
nvd
CVE-1999-0775CRITICALCVSS 10.0v11.2\(14\)gs2v11.2\(15\)g1999-06-10
CVE-1999-0775 [CRITICAL] CVE-1999-0775: Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due
Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due to improper handling of the "established" keyword in an access list.
nvd
CVE-1999-0445MEDIUMCVSS 5.0v12.0v12.0\(1\)w+10 more1999-04-01
CVE-1999-0445 [MEDIUM] CVE-1999-0445: In Cisco routers under some versions of IOS 12.0 running NAT, some packets may not be filtered by in
In Cisco routers under some versions of IOS 12.0 running NAT, some packets may not be filtered by input access list filters.
nvd
CVE-1999-0063MEDIUMCVSS 5.0PoCv11.3aav11.3db+10 more1999-01-11
CVE-1999-0063 [MEDIUM] CVE-1999-0063: Cisco IOS 12.0 and other versions can be crashed by malicious UDP packets to the syslog port.
Cisco IOS 12.0 and other versions can be crashed by malicious UDP packets to the syslog port.
nvd
CVE-1999-0162MEDIUMCVSS 5.0v11.21998-09-01
CVE-1999-0162 [MEDIUM] CVE-1999-0162: The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering.
The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering.
nvd
CVE-1999-0157MEDIUMCVSS 5.0v11.2pv11.3t+2 more1998-08-18
CVE-1999-0157 [MEDIUM] CVE-1999-0157: Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service.
Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service.
nvd
CVE-1999-0159LOWCVSS 3.5v9.1v11.0\(20.3\)+14 more1998-08-12
CVE-1999-0159 [LOW] CWE-400 CVE-1999-0159: Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (su
Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login). This applies to some IOS 9.x, 10.x, and 11.x releases.
nvd
CVE-1999-0230MEDIUMCVSS 5.0v4.1v4.1.1+1 more1997-12-15
CVE-1999-0230 [MEDIUM] CVE-1999-0230: Buffer overflow in Cisco 7xx routers through the telnet service.
Buffer overflow in Cisco 7xx routers through the telnet service.
nvd
CVE-1999-0160HIGHCVSS 7.5v4.1v9.1+5 more1997-10-01
CVE-1999-0160 [HIGH] CVE-1999-0160: Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unau
Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections.
nvd
CVE-1999-0161HIGHCVSS 7.5v10.3\(3.4\)v10.3\(4.2\)1995-07-31
CVE-1999-0161 [HIGH] CVE-1999-0161: In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could by
In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering.
nvd
CVE-1999-1466HIGHCVSS 7.5v8.2v8.3+2 more1992-12-10
CVE-1999-1466 [HIGH] CVE-1999-1466: Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access con
Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enabled, and the access list uses the "established" keyword.
nvd