cbcvebase.

Cisco Ios And Ios Xe vulnerabilities

121 known vulnerabilities affecting cisco/ios_and_ios_xe.

Total CVEs
121
CISA KEV
23
actively exploited
Public exploits
3
Exploited in wild
22
Severity breakdown
UNKNOWN121

Vulnerabilities

Page 2 of 7
CVE-2020-3226UNKNOWNCVSS 3.0
CVE-2020-3226 Cisco IOS and IOS XE Software Session Initiation Protocol Denial of Service Vulnerability CVE-2020-3226: Cisco IOS and IOS XE Software Session Initiation Protocol Denial of Service Vulnerability A vulnerability in the Session Initiation Protocol (SIP) library of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to insuffici
cisco
CVE-2020-3511UNKNOWNCVSS 3.0
CVE-2020-3511 Cisco IOS and IOS XE Software ISDN Q.931 Denial of Service Vulnerability CVE-2020-3511: Cisco IOS and IOS XE Software ISDN Q.931 Denial of Service Vulnerability A vulnerability in the ISDN subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient input validation when the ISDN Q.931 messages are process
cisco
CVE-2017-6744UNKNOWNCVSS 3.0KEV
CVE-2017-6744 SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software CVE-2017-6744: SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending
cisco
CVE-2023-20080UNKNOWNCVSS 3.1
CVE-2023-20080 Cisco IOS and IOS XE Software IPv6 DHCP (DHCPv6) Relay and Server Denial of Service Vulnerability CVE-2023-20080: Cisco IOS and IOS XE Software IPv6 DHCP (DHCPv6) Relay and Server Denial of Service Vulnerability A vulnerability in the IPv6 DHCP version 6 (DHCPv6) relay and server features of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition. This vulnerability is due to insufficient validation of data bound
cisco
CVE-2020-3479UNKNOWNCVSS 3.1
CVE-2020-3479 Cisco IOS and IOS XE Software MP-BGP EVPN Denial of Service Vulnerability CVE-2020-3479: Cisco IOS and IOS XE Software MP-BGP EVPN Denial of Service Vulnerability A vulnerability in the implementation of Multiprotocol Border Gateway Protocol (MP-BGP) for the Layer 2 VPN (L2VPN) Ethernet VPN (EVPN) address family in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to in
cisco
CVE-2021-34703UNKNOWNCVSS 3.1
CVE-2021-34703 Cisco IOS and IOS XE Software Link Layer Discovery Protocol Denial of Service Vulnerability CVE-2021-34703: Cisco IOS and IOS XE Software Link Layer Discovery Protocol Denial of Service Vulnerability A vulnerability in the Link Layer Discovery Protocol (LLDP) message parser of Cisco IOS Software and Cisco IOS XE Software could allow an attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. This vulnerability is due to improper initial
cisco
CVE-2018-0156UNKNOWNCVSS 3.0KEV
CVE-2018-0156 Cisco IOS and IOS XE Software Smart Install Denial of Service Vulnerability CVE-2018-0156: Cisco IOS and IOS XE Software Smart Install Denial of Service Vulnerability A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to improper validation of packet data. An attacker could exp
cisco
CVE-2017-3857UNKNOWNCVSS 3.0
CVE-2017-3857 Cisco IOS and IOS XE Software Layer 2 Tunneling Protocol Denial of Service Vulnerability CVE-2017-3857: Cisco IOS and IOS XE Software Layer 2 Tunneling Protocol Denial of Service Vulnerability A vulnerability in the Layer 2 Tunneling Protocol (L2TP) parsing function of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficient validation of L2TP packets. An attacker could exploi
cisco
CVE-2024-20308UNKNOWNCVSS 3.1
CVE-2024-20308 Cisco IOS and IOS XE Software Internet Key Exchange Version 1 Fragmentation Denial of Service Vulnerabilities CVE-2024-20308: Cisco IOS and IOS XE Software Internet Key Exchange Version 1 Fragmentation Denial of Service Vulnerabilities Multiple vulnerabilities in the Internet Key Exchange version 1 (IKEv1) fragmentation feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a heap overflow or corruption on an affected syste
cisco
CVE-2016-6409UNKNOWN
CVE-2016-6409 Cisco IOS and IOS XE Software Data in Motion Component Denial of Service Vulnerability CVE-2016-6409: Cisco IOS and IOS XE Software Data in Motion Component Denial of Service Vulnerability A vulnerability in the Cisco Data in Motion (DMo) component for Cisco IOS and IOS XE Software with the IOx feature set could allow an unauthenticated, remote attacker to cause a partial denial of service (DoS) condition for the DMo process on a targeted system. The vulnerability is due to insuffi
cisco
CVE-2017-12304UNKNOWNCVSS 3.0
CVE-2017-12304 Cisco IOS and IOS XE Software IOS daemon Cross-Site Scripting Vulnerability CVE-2017-12304: Cisco IOS and IOS XE Software IOS daemon Cross-Site Scripting Vulnerability A vulnerability in the IOS daemon (IOSd) web-based management interface of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface on an affected device. The vulnerability is due to insufficient
cisco
CVE-2017-6742UNKNOWNCVSS 3.0KEV
CVE-2017-6742 SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software CVE-2017-6742: SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending
cisco
CVE-2016-6392UNKNOWN
CVE-2016-6392 Cisco IOS and IOS XE Software Multicast Routing Denial of Service Vulnerabilities CVE-2016-6392: Cisco IOS and IOS XE Software Multicast Routing Denial of Service Vulnerabilities Multiple vulnerabilities in the multicast subsystem of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition. The issues are in IPv4 Multicast Source Discovery Protocol (MSDP) and IPv6 Protocol Independent Multicast (PIM). The first vuln
cisco
CVE-2019-1747UNKNOWNCVSS 3.0
CVE-2019-1747 Cisco IOS and IOS XE Software Short Message Service Denial of Service Vulnerability CVE-2019-1747: Cisco IOS and IOS XE Software Short Message Service Denial of Service Vulnerability A vulnerability in the implementation of the Short Message Service (SMS) handling functionality of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition on an affected device. The vulnerability is due to improper proc
cisco
CVE-2022-20697UNKNOWNCVSS 3.1
CVE-2022-20697 Cisco IOS and IOS XE Software Web Services Denial of Service Vulnerability CVE-2022-20697: Cisco IOS and IOS XE Software Web Services Denial of Service Vulnerability A vulnerability in the web services interface of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due to improper resource management in the HTTP server code. An attacker could exploit this vulnerability by se
cisco
CVE-2018-0174UNKNOWNCVSS 3.0KEV
CVE-2018-0174 Cisco IOS and IOS XE Software DHCP Version 4 Relay Denial of Service Vulnerability CVE-2018-0174: Cisco IOS and IOS XE Software DHCP Version 4 Relay Denial of Service Vulnerability A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability exists because the affected software
cisco
CVE-2024-20414UNKNOWNCVSS 3.1
CVE-2024-20414 Cisco IOS and IOS XE Software Web UI Cross-Site Request Forgery Vulnerability CVE-2024-20414: Cisco IOS and IOS XE Software Web UI Cross-Site Request Forgery Vulnerability A vulnerability in the web UI feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system through the web UI. This vulnerability is due to incorrectly accepting configuration changes through th
cisco
CVE-2015-6278UNKNOWN
CVE-2015-6278 Cisco IOS and IOS XE Software IPv6 First Hop Security Denial of Service Vulnerabilities CVE-2015-6278: Cisco IOS and IOS XE Software IPv6 First Hop Security Denial of Service Vulnerabilities Two vulnerabilities in the IPv6 first hop security feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. Cisco has released software updates that address these vulnerabilities. There are no CWE: CWE-20, CWE-20 Bug IDs: CS
cisco
CVE-2019-1740UNKNOWNCVSS 3.0
CVE-2019-1740 Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities CVE-2019-1740: Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities Multiple vulnerabilities in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. These vulnerabilities are due to a parsing issu
cisco
CVE-2017-6741UNKNOWNCVSS 3.0
CVE-2017-6741 SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software CVE-2017-6741: SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending
cisco
← Previous2 / 7Next →