CVSS: 7.5EPSS: 0%CPEs: 31EXPL: 0CVE-2019-12656 – Cisco IOx Application Environment Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2019-12656
25 Sep 2019 — A vulnerability in the IOx application environment of multiple Cisco platforms could allow an unauthenticated, remote attacker to cause the IOx web server to stop processing HTTPS requests, resulting in a denial of service (DoS) condition. The vulnerability is due to a Transport Layer Security (TLS) implementation issue. An attacker could exploit this vulnerability by sending crafted TLS packets to the IOx web server on an affected device. A successful exploit could allow the attacker to cause the IOx web s... • https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-iox • CWE-20: Improper Input Validation •
CVSS: 7.1EPSS: 0%CPEs: 30EXPL: 0CVE-2017-3812
https://notcve.org/view.php?id=CVE-2017-3812
03 Feb 2017 — A vulnerability in the implementation of Common Industrial Protocol (CIP) functionality in Cisco Industrial Ethernet 2000 Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to a system memory leak. More Information: CSCvc54788. Known Affected Releases: 15.2(5.4.32i)E2. Known Fixed Releases: 15.2(5.4.62i)E2. Una vulnerabilidad en la implementación de la funcionalidad Common Industrial Protocol (CIP) en Cisco Industrial Ethernet 2000 Series Switche... • http://www.securityfocus.com/bid/95946 • CWE-772: Missing Release of Resource after Effective Lifetime •