VYPR

iOS Xr Software

by Cisco Systems, Inc.

CVEs (292)

  • CVE-2024-20467HigSep 25, 2024
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the implementation of the IPv4 fragmentation reassembly code in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper management of…

  • CVE-2024-20464HigSep 25, 2024
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation of received…

  • CVE-2024-20455HigSep 25, 2024
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense (UTD) component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. …

  • CVE-2024-20436HigSep 25, 2024
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service feature is enabled could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a null pointer…

  • CVE-2024-20433HigSep 25, 2024
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the Resource Reservation Protocol (RSVP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This…

  • CVE-2024-20304HigSep 11, 2024
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the multicast traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device. This vulnerability exists because the Mtrace2 code does not properly handle…

  • CVE-2024-20308HigMar 27, 2024
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a heap underflow, resulting in an affected device reloading. This vulnerability exists because crafted, fragmented IKEv1…

  • CVE-2024-20311HigMar 27, 2024
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the Locator ID Separation Protocol (LISP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability is due to the incorrect handling of LISP packets. An…

  • CVE-2023-20227HigSep 27, 2023
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the Layer 2 Tunneling Protocol (L2TP) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of certain L2TP…

  • CVE-2023-20226HigSep 27, 2023
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in Application Quality of Experience (AppQoE) and Unified Threat Defense (UTD) on Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This…

  • CVE-2023-20187HigSep 27, 2023
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause the affected device to reload, resulting in a denial of service (DoS)…

  • CVE-2023-20049HigMar 9, 2023
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the bidirectional forwarding detection (BFD) hardware offload feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers, ASR 9902 Compact High-Performance Routers, and ASR 9903 Compact High-Performance Routers could allow an…

  • CVE-2022-20919HigSep 30, 2022
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the processing of malformed Common Industrial Protocol (CIP) packets that are sent to Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to unexpectedly reload, resulting in a denial of…

  • CVE-2022-20714HigApr 15, 2022
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the data plane microcode of Lightspeed-Plus line cards for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause the line card to reset. This vulnerability is due to the incorrect handling of malformed…

  • CVE-2022-20697HigApr 15, 2022
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the web services interface of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due to improper resource management in the HTTP server code. An…

  • CVE-2021-34720HigSep 9, 2021
    risk 0.56cvss 8.6epss 0.01

    A vulnerability in the IP Service Level Agreements (IP SLA) responder and Two-Way Active Measurement Protocol (TWAMP) features of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause device packet memory to become exhausted or cause the IP SLA process…

  • CVE-2021-1313HigFeb 4, 2021
    risk 0.56cvss 8.6epss 0.02

    Multiple vulnerabilities in the ingress packet processing function of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details…

  • CVE-2021-1288HigFeb 4, 2021
    risk 0.56cvss 8.6epss 0.02

    Multiple vulnerabilities in the ingress packet processing function of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details…

  • CVE-2020-26070HigNov 12, 2020
    risk 0.56cvss 8.6epss 0.02

    A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due…

  • CVE-2020-3408HigSep 24, 2020
    risk 0.56cvss 8.6epss 0.02

    A vulnerability in the Split DNS feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability occurs because the regular…

Page 3 of 15