Cisco IOS XE vulnerabilities

505 known vulnerabilities affecting cisco/ios_xe.

Total CVEs

505

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL20HIGH323MEDIUM161LOW1

Vulnerabilities

Page 21 of 26

CVE-2015-6429MEDIUMCVSS 5.0v3.15s.0v3.15s.1+5 more2015-12-19

CVE-2015-6429 [MEDIUM] CWE-19 CVE-2015-6429: The IKEv1 state machine in Cisco IOS 15.4 through 15.6 and IOS XE 3.15 through 3.17 allows remote at The IKEv1 state machine in Cisco IOS 15.4 through 15.6 and IOS XE 3.15 through 3.17 allows remote attackers to cause a denial of service (IPsec connection termination) via a crafted IKEv1 packet to a tunnel endpoint, aka Bug ID CSCuw08236.

nvd

CVE-2015-6383HIGHCVSS 7.2v15.4\(3\)s2015-12-03

CVE-2015-6383 [HIGH] CWE-264 CVE-2015-6383: Cisco IOS XE 15.4(3)S on ASR 1000 devices improperly loads software packages, which allows local use Cisco IOS XE 15.4(3)S on ASR 1000 devices improperly loads software packages, which allows local users to bypass license restrictions and obtain certain root privileges by using the CLI to enter crafted filenames, aka Bug ID CSCuv93130.

nvd

CVE-2015-6280CRITICALCVSS 9.3v3.6e.0v3.6e.0a+24 more2015-09-28

CVE-2015-6280 [CRITICAL] CWE-287 CVE-2015-6280: The SSHv2 functionality in Cisco IOS 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.6E before 3.6.3E, 3.7E The SSHv2 functionality in Cisco IOS 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.6E before 3.6.3E, 3.7E before 3.7.1E, 3.10S before 3.10.6S, 3.11S before 3.11.4S, 3.12S before 3.12.3S, 3.13S before 3.13.3S, and 3.14S before 3.14.1S does not properly implement RSA authentication, which allows remote attackers to obtain login access by leveraging knowledge

nvd

CVE-2015-6279HIGHCVSS 7.8v3.2se.0v3.2se.1+45 more2015-09-28

CVE-2015-6279 [HIGH] CWE-20 CVE-2015-6279: The IPv6 snooping functionality in the first-hop security subsystem in Cisco IOS 12.2, 15.0, 15.1, 1 The IPv6 snooping functionality in the first-hop security subsystem in Cisco IOS 12.2, 15.0, 15.1, 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.2SE, 3.3SE, 3.3XO, 3.4SG, 3.5E, and 3.6E before 3.6.3E; 3.7E before 3.7.2E; 3.9S and 3.10S before 3.10.6S; 3.11S before 3.11.4S; 3.12S and 3.13S before 3.13.3S; and 3.14S before 3.14.2S allows remote attackers to caus

nvd

CVE-2015-6278HIGHCVSS 7.8v3.2se.0v3.2se.1+54 more2015-09-28

CVE-2015-6278 [HIGH] CWE-20 CVE-2015-6278: The IPv6 snooping functionality in the first-hop security subsystem in Cisco IOS 12.2, 15.0, 15.1, 1 The IPv6 snooping functionality in the first-hop security subsystem in Cisco IOS 12.2, 15.0, 15.1, 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.2SE, 3.3SE, 3.3XO, 3.4SG, 3.5E, and 3.6E before 3.6.3E; 3.7E before 3.7.2E; 3.9S and 3.10S before 3.10.6S; 3.11S before 3.11.4S; 3.12S and 3.13S before 3.13.3S; and 3.14S before 3.14.2S does not properly implement the

nvd

CVE-2015-6282HIGHCVSS 7.8v2.1.0v2.1.1+93 more2015-09-26

CVE-2015-6282 [HIGH] CWE-20 CVE-2015-6282: Cisco IOS XE 2.x and 3.x before 3.10.6S, 3.11.xS through 3.13.xS before 3.13.3S, and 3.14.xS through Cisco IOS XE 2.x and 3.x before 3.10.6S, 3.11.xS through 3.13.xS before 3.13.3S, and 3.14.xS through 3.15.xS before 3.15.1S allows remote attackers to cause a denial of service (device reload) via IPv4 packets that require NAT and MPLS actions, aka Bug ID CSCut96933.

nvd

CVE-2015-6294MEDIUMCVSS 6.1v3.6e.0v3.6e.1+1 more2015-09-18

CVE-2015-6294 [MEDIUM] CWE-399 CVE-2015-6294: Cisco IOS 15.2(3)E and earlier and IOS XE 3.6(2)E and earlier allow remote attackers to cause a deni Cisco IOS 15.2(3)E and earlier and IOS XE 3.6(2)E and earlier allow remote attackers to cause a denial of service (functionality loss) via crafted Cisco Discovery Protocol (CDP) packets, aka Bug ID CSCuu25770.

nvd

CVE-2015-6272HIGHCVSS 7.8v2.1.0v2.1.1+6 more2015-08-31

CVE-2015-6272 [HIGH] CWE-399 CVE-2015-6272: Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Layer Gateway i Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted H.323 packet, aka Bug ID CSCsx35393, CSCsx07094, and CSCsw93064.

nvd

CVE-2015-6270HIGHCVSS 7.8v2.2.1v2.2.22015-08-31

CVE-2015-6270 [HIGH] CWE-399 CVE-2015-6270: Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service ( Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted IPv6 packet, aka Bug ID CSCsv98555.

nvd

CVE-2015-6271HIGHCVSS 7.8v2.1.0v2.1.1+14 more2015-08-31

CVE-2015-6271 [HIGH] CWE-399 CVE-2015-6271: Cisco IOS XE 2.1.0 through 2.4.3 and 2.5.0 on ASR 1000 devices, when NAT Application Layer Gateway i Cisco IOS XE 2.1.0 through 2.4.3 and 2.5.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted SIP packet, aka Bug IDs CSCta74749 and CSCta77008.

nvd

CVE-2015-6269HIGHCVSS 7.8v2.2.1v2.2.22015-08-31

CVE-2015-6269 [HIGH] CWE-399 CVE-2015-6269: Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service ( Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted (1) IPv4 or (2) IPv6 packet, aka Bug ID CSCsw69990.

nvd

CVE-2015-6273HIGHCVSS 7.8v2.2.1v2.2.2+3 more2015-08-29

CVE-2015-6273 [HIGH] CWE-399 CVE-2015-6273: Cisco IOS XE before 3.1.2S on ASR 1000 devices mishandles the automatic setup of Virtual Fragment Re Cisco IOS XE before 3.1.2S on ASR 1000 devices mishandles the automatic setup of Virtual Fragment Reassembly (VFR) by certain firewall and NAT components, which allows remote attackers to cause a denial of service (Embedded Services Processor crash) via crafted IP packets, aka Bug IDs CSCtf87624, CSCte93229, CSCtd19103, and CSCti63623.

nvd

CVE-2015-6267HIGHCVSS 7.8v2.2.1v2.2.22015-08-29

CVE-2015-6267 [HIGH] CWE-399 CVE-2015-6267: Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service ( Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted L2TP packet, aka Bug IDs CSCsw95722 and CSCsw95496.

nvd

CVE-2015-6268HIGHCVSS 7.8v2.2.1v2.2.22015-08-29

CVE-2015-6268 [HIGH] CWE-399 CVE-2015-6268: Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service ( Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted IPv4 UDP packet, aka Bug ID CSCsw95482.

nvd

CVE-2015-4291HIGHCVSS 7.8v2.1.0v2.1.1+11 more2015-08-01

CVE-2015-4291 [HIGH] CWE-399 CVE-2015-4291: Cisco IOS XE 2.x before 2.4.3 and 2.5.x before 2.5.1 on ASR 1000 devices allows remote attackers to Cisco IOS XE 2.x before 2.4.3 and 2.5.x before 2.5.1 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted series of fragmented (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCtd72617.

nvd

CVE-2015-4293MEDIUMCVSS 5.0v2.1.0v2.1.1+27 more2015-07-30

CVE-2015-4293 [MEDIUM] CWE-399 CVE-2015-4293: The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to ca The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (CPU consumption or packet loss) via fragmented (1) IPv4 or (2) IPv6 packets that trigger ATTN-3-SYNC_TIMEOUT errors after reassembly failures, aka Bug ID CSCuo37957.

nvd

CVE-2015-0681HIGHCVSS 7.1v2.5.0v2.5.1+51 more2015-07-24

CVE-2015-0681 [HIGH] CWE-399 CVE-2015-0681: The TFTP server in Cisco IOS 12.2(44)SQ1, 12.2(33)XN1, 12.4(25e)JAM1, 12.4(25e)JAO5m, 12.4(23)JY, 15 The TFTP server in Cisco IOS 12.2(44)SQ1, 12.2(33)XN1, 12.4(25e)JAM1, 12.4(25e)JAO5m, 12.4(23)JY, 15.0(2)ED1, 15.0(2)EY3, 15.1(3)SVF4a, and 15.2(2)JB1 and IOS XE 2.5.x, 2.6.x, 3.1.xS, 3.2.xS, 3.3.xS, 3.4.xS, and 3.5.xS before 3.6.0S; 3.1.xSG, 3.2.xSG, and 3.3.xSG before 3.4.0SG; 3.2.xSE before 3.3.0SE; 3.2.xXO before 3.3.0XO; 3.2.xSQ; 3.3.xSQ; and 3.4.x

nvd

CVE-2015-4243MEDIUMCVSS 6.1v3.5.0s2015-07-08

CVE-2015-4243 [MEDIUM] CWE-399 CVE-2015-4243: The PPPoE establishment implementation in Cisco IOS XE 3.5.0S on ASR 1000 devices allows remote atta The PPPoE establishment implementation in Cisco IOS XE 3.5.0S on ASR 1000 devices allows remote attackers to cause a denial of service (device reload) by sending malformed PPPoE Active Discovery Request (PADR) packets on the local network, aka Bug ID CSCty94202.

nvd

CVE-2015-0708MEDIUMCVSS 6.1v3.13s.0v3.13s.1+1 more2015-04-29

CVE-2015-0708 [MEDIUM] CWE-399 CVE-2015-0708: Cisco IOS 15.4S, 15.4SN, and 15.5S and IOS XE 3.13S and 3.14S allow remote attackers to cause a deni Cisco IOS 15.4S, 15.4SN, and 15.5S and IOS XE 3.13S and 3.14S allow remote attackers to cause a denial of service (device crash) by including an IA_NA option in a DHCPv6 Solicit message on the local network, aka Bug ID CSCur29956.

nvd

CVE-2015-0710MEDIUMCVSS 6.1v3.10.0sv3.10s.012015-04-29

CVE-2015-0710 [MEDIUM] CWE-399 CVE-2015-0710: The Overlay Transport Virtualization (OTV) implementation in Cisco IOS XE 3.10S allows remote attack The Overlay Transport Virtualization (OTV) implementation in Cisco IOS XE 3.10S allows remote attackers to cause a denial of service (device reload) via a series of packets that are considered oversized and trigger improper fragmentation handling, aka Bug IDs CSCup37676 and CSCup30335.

nvd

← Previous21 / 26Next →