) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- CPE Product Version: cpe:/o:cisco:ios_xr:2.0.0
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2014-3322 |
Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of IP packets, which allows remote attackers to cause a denial of service (chip and card hangs) via malformed (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCuo68417. Published: July 24, 2014; 10:55:07 AM -0400 |
V3.x:(not available) V2.0: 6.1 MEDIUM |
| CVE-2014-3321 |
Cisco IOS XR 4.3.4 and earlier on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote attackers to cause a denial of service (chip and card hangs) via a series of crafted MPLS packets, aka Bug ID CSCuo91149. Published: July 17, 2014; 8:55:04 PM -0400 |
V3.x:(not available) V2.0: 5.7 MEDIUM |
| CVE-2012-2488 |
Cisco IOS XR before 4.2.1 on ASR 9000 series devices and CRS series devices allows remote attackers to cause a denial of service (packet transmission outage) via a crafted packet, aka Bug IDs CSCty94537 and CSCtz62593. Published: May 31, 2012; 6:17:38 AM -0400 |
V3.x:(not available) V2.0: 7.8 HIGH |
| CVE-2009-2056 |
Cisco IOS XR 3.8.1 and earlier allows remote authenticated users to cause a denial of service (process crash) via vectors involving a BGP UPDATE message with many AS numbers prepended to the AS path. Published: August 21, 2009; 1:30:00 PM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
| CVE-2009-1154 |
Cisco IOS XR 3.8.1 and earlier allows remote attackers to cause a denial of service (process crash) via a long BGP UPDATE message, as demonstrated by a message with many AS numbers in the AS Path Attribute. Published: August 21, 2009; 1:30:00 PM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |