VYPR

ASR 5000 Series Aggregation Services Routers

by Cisco Systems, Inc.

CVEs (26)

  • CVE-2017-6773MedAug 17, 2017
    risk 0.44cvss 6.7epss 0.00

    A vulnerability in the CLI of Cisco ASR 5000 Series Aggregated Services Routers running the Cisco StarOS operating system could allow an authenticated, local attacker to bypass the CLI restrictions and execute commands on the underlying operating system. The vulnerability is due…

  • CVE-2018-15464MedJan 11, 2019
    risk 0.38cvss 5.8epss 0.02

    A vulnerability in Cisco 900 Series Aggregation Services Router (ASR) software could allow an unauthenticated, remote attacker to cause a partial denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient handling of certain broadcast…

  • CVE-2017-6775MedAug 17, 2017
    risk 0.37cvss 5.7epss 0.00

    A vulnerability in the CLI of Cisco ASR 5000 Series Aggregated Services Routers running the Cisco StarOS operating system could allow an authenticated, local attacker to elevate their privileges to admin-level privileges. The vulnerability is due to incorrect permissions that…

  • CVE-2020-3244MedJun 18, 2020
    risk 0.35cvss 5.3epss 0.01

    A vulnerability in the Enhanced Charging Service (ECS) functionality of Cisco ASR 5000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass the traffic classification rules on an affected device. The vulnerability is due to insufficient…

  • CVE-2017-6774MedAug 17, 2017
    risk 0.33cvss 5.0epss 0.01

    A vulnerability in Cisco ASR 5000 Series Aggregated Services Routers running the Cisco StarOS operating system could allow an authenticated, remote attacker to overwrite or modify sensitive system files. The vulnerability is due to the inclusion of sensitive system files within…

  • CVE-2013-2779Apr 11, 2013
    risk 0.00cvss epss 0.02

    Cisco IOS XE 3.4 before 3.4.5S, and 3.5 through 3.7 before 3.7.1S, on 1000 series Aggregation Services Routers (ASR) does not properly implement the Cisco Multicast Leaf Recycle Elimination (MLRE) feature, which allows remote attackers to cause a denial of service (card reload)…

Page 2 of 2