Search Results (Refine Search)
- Keyword (text search): cpe:2.3:o:cisco:ios_xr:2.0:*:*:*:*:*:*:*
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2014-3353 |
Cisco IOS XR 4.3(.2) and earlier, as used in Cisco Carrier Routing System (CRS), allows remote attackers to cause a denial of service (CPU consumption and IPv6 packet drops) via a malformed IPv6 packet, aka Bug ID CSCuo95165. Published: September 04, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 7.1 HIGH |
CVE-2014-3335 |
Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of packets with multicast destination MAC addresses, which allows remote attackers to cause a denial of service (chip and card hangs) via a crafted packet, aka Bug ID CSCup77750. Published: August 26, 2014; 6:55:04 AM -0400 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-2014-3322 |
Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of IP packets, which allows remote attackers to cause a denial of service (chip and card hangs) via malformed (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCuo68417. Published: July 24, 2014; 10:55:07 AM -0400 |
V3.x:(not available) V2.0: 6.1 MEDIUM |
CVE-2014-3321 |
Cisco IOS XR 4.3.4 and earlier on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote attackers to cause a denial of service (chip and card hangs) via a series of crafted MPLS packets, aka Bug ID CSCuo91149. Published: July 17, 2014; 8:55:04 PM -0400 |
V3.x:(not available) V2.0: 5.7 MEDIUM |
CVE-2012-2488 |
Cisco IOS XR before 4.2.1 on ASR 9000 series devices and CRS series devices allows remote attackers to cause a denial of service (packet transmission outage) via a crafted packet, aka Bug IDs CSCty94537 and CSCtz62593. Published: May 31, 2012; 6:17:38 AM -0400 |
V3.x:(not available) V2.0: 7.8 HIGH |
CVE-2009-2056 |
Cisco IOS XR 3.8.1 and earlier allows remote authenticated users to cause a denial of service (process crash) via vectors involving a BGP UPDATE message with many AS numbers prepended to the AS path. Published: August 21, 2009; 1:30:00 PM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2009-1154 |
Cisco IOS XR 3.8.1 and earlier allows remote attackers to cause a denial of service (process crash) via a long BGP UPDATE message, as demonstrated by a message with many AS numbers in the AS Path Attribute. Published: August 21, 2009; 1:30:00 PM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2008-0960 |
SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; (2) UCD-SNMP; (3) eCos; (4) Juniper Session and Resource Control (SRC) C-series 1.0.0 through 2.0.0; (5) NetApp (aka Network Appliance) Data ONTAP 7.3RC1 and 7.3RC2; (6) SNMP Research before 16.2; (7) multiple Cisco IOS, CatOS, ACE, and Nexus products; (8) Ingate Firewall 3.1.0 and later and SIParator 3.1.0 and later; (9) HP OpenView SNMP Emanate Master Agent 15.x; and possibly other products relies on the client to specify the HMAC length, which makes it easier for remote attackers to bypass SNMP authentication via a length value of 1, which only checks the first byte. Published: June 10, 2008; 2:32:00 PM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-2007-4430 |
Unspecified vulnerability in Cisco IOS 12.0 through 12.4 allows context-dependent attackers to cause a denial of service (device restart and BGP routing table rebuild) via certain regular expressions in a "show ip bgp regexp" command. NOTE: unauthenticated remote attacks are possible in environments with anonymous telnet and Looking Glass access. Published: August 20, 2007; 3:17:00 PM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |