Cisco iOS vulnerabilities

CVE-1999-1306 [HIGH] CVE-1999-1306: Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters.

CVE-2009-0633 Cisco IOS Software Mobile IP and Mobile IPv6 Vulnerabilities CVE-2009-0633: Cisco IOS Software Mobile IP and Mobile IPv6 Vulnerabilities Devices that are running Cisco IOS Software and configured for Mobile IP Network Address Translation (NAT) Traversal feature or Mobile IPv6 are vulnerable to a denial of service (DoS) attack that may result in a blocked interface. Cisco has released software updates that address these vulnerabilities. This advisory is posted at the following link

CVE-2003-1230 Cisco IOS Software TCP Initial Sequence Number Randomization Improvements CVE-2003-1230: Cisco IOS Software TCP Initial Sequence Number Randomization Improvements Cisco IOS ?? Software contains a flaw that permits the successful prediction of TCP Initial Sequence Numbers. This vulnerability is present in all released versions of Cisco IOS software running on Cisco routers and switches. It only affects the security of TCP connections that originate or terminate on the affected Cisco

CVE-2014-3356 Cisco IOS Software Metadata Vulnerabilities CVE-2014-3356: Cisco IOS Software Metadata Vulnerabilities Two vulnerabilities in the metadata flow feature of Cisco IOS Software could allow an unauthenticated, remote attacker to reload a vulnerable device. The vulnerabilities are due to improper handling of transit RSVP packets that need to be processed by the metadata infrastructure. An attacker could exploit these vulnerabilities by sending malformed RSVP packets to an affected devic

CVE-2018-0154 Cisco IOS Software Integrated Services Module for VPN Denial of Service Vulnerability CVE-2018-0154: Cisco IOS Software Integrated Services Module for VPN Denial of Service Vulnerability A vulnerability in the crypto engine of the Cisco Integrated Services Module for VPN (ISM-VPN) running Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient handling of VPN traf

CVE-2016-1330 Cisco IOS Software for Cisco Industrial Ethernet 2000 Series Switches Denial of Service Vulnerability CVE-2016-1330: Cisco IOS Software for Cisco Industrial Ethernet 2000 Series Switches Denial of Service Vulnerability A vulnerability in the processing of Cisco Discovery Protocol (CDP) packets by Cisco IOS Software for Cisco Industrial Ethernet 2000 Series Switches could allow an unauthenticated, adjacent attacker to cause an affected device to reload. The vulnerability is due to i

CVE-2009-0634 Cisco IOS Software Mobile IP and Mobile IPv6 Vulnerabilities CVE-2009-0634: Cisco IOS Software Mobile IP and Mobile IPv6 Vulnerabilities Devices that are running Cisco IOS Software and configured for Mobile IP Network Address Translation (NAT) Traversal feature or Mobile IPv6 are vulnerable to a denial of service (DoS) attack that may result in a blocked interface. Cisco has released software updates that address these vulnerabilities. This advisory is posted at the following link

CVE-2001-0328 Cisco IOS Software TCP Initial Sequence Number Randomization Improvements CVE-2001-0328: Cisco IOS Software TCP Initial Sequence Number Randomization Improvements Cisco IOS ?? Software contains a flaw that permits the successful prediction of TCP Initial Sequence Numbers. This vulnerability is present in all released versions of Cisco IOS software running on Cisco routers and switches. It only affects the security of TCP connections that originate or terminate on the affected Cisco

CVE-2018-0088 Cisco IOS Software for Industrial Ethernet 4010 Series Switches Test Command Arbitrary Code Execution and Denial of Service Vulnerability CVE-2018-0088: Cisco IOS Software for Industrial Ethernet 4010 Series Switches Test Command Arbitrary Code Execution and Denial of Service Vulnerability A vulnerability in one of the diagnostic test CLI commands on Cisco Industrial Ethernet 4010 Series Switches running Cisco IOS Software could allow an authenticated, local attacker to impact the

CVE-2020-3426 Cisco IOS Software for Cisco Industrial Routers Virtual-LPWA Unauthorized Access Vulnerability CVE-2020-3426: Cisco IOS Software for Cisco Industrial Routers Virtual-LPWA Unauthorized Access Vulnerability A vulnerability in the implementation of the Low Power, Wide Area (LPWA) subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could allow an unauthenticated, remote at

CVE-2009-0628 Cisco IOS Software WebVPN and SSLVPN Vulnerabilities CVE-2009-0628: Cisco IOS Software WebVPN and SSLVPN Vulnerabilities Cisco IOS software contains two vulnerabilities within the Cisco IOS WebVPN or Cisco IOS SSLVPN feature (SSLVPN) that can be remotely exploited without authentication to cause a denial of service condition. Both vulnerabilities affect both Cisco IOS WebVPN and Cisco IOS SSLVPN features: Crafted HTTPS packet will crash device. SSLVPN sessions cause a memory leak i

CVE-2017-12279 Cisco IOS Software for Cisco Aironet Access Points Information Disclosure Vulnerability CVE-2017-12279: Cisco IOS Software for Cisco Aironet Access Points Information Disclosure Vulnerability A vulnerability in the packet processing code of Cisco IOS Software for Cisco Aironet Access Points could allow an unauthenticated, adjacent attacker to retrieve content from memory on an affected device, which could lead to the disclosure of confidential information. The vulnerability is due

CVE-2014-3355 Cisco IOS Software Metadata Vulnerabilities CVE-2014-3355: Cisco IOS Software Metadata Vulnerabilities Two vulnerabilities in the metadata flow feature of Cisco IOS Software could allow an unauthenticated, remote attacker to reload a vulnerable device. The vulnerabilities are due to improper handling of transit RSVP packets that need to be processed by the metadata infrastructure. An attacker could exploit these vulnerabilities by sending malformed RSVP packets to an affected devic

CVE-1999-0077 Cisco IOS Software TCP Initial Sequence Number Randomization Improvements CVE-1999-0077: Cisco IOS Software TCP Initial Sequence Number Randomization Improvements Cisco IOS ?? Software contains a flaw that permits the successful prediction of TCP Initial Sequence Numbers. This vulnerability is present in all released versions of Cisco IOS software running on Cisco routers and switches. It only affects the security of TCP connections that originate or terminate on the affected Cisco