CVSS: 7.8EPSS: 0%CPEs: 95EXPL: 0CVE-2015-6282
https://notcve.org/view.php?id=CVE-2015-6282
25 Sep 2015 — Cisco IOS XE 2.x and 3.x before 3.10.6S, 3.11.xS through 3.13.xS before 3.13.3S, and 3.14.xS through 3.15.xS before 3.15.1S allows remote attackers to cause a denial of service (device reload) via IPv4 packets that require NAT and MPLS actions, aka Bug ID CSCut96933. Vulnerabilidad en Cisco IOS XE 2.x y 3.x en versiones anteriores a 3.10.6S, 3.11.xS hasta la versión 3.13.xS en versiones anteriores a 3.13.3S y 3.14.xS hasta la versión 3.15.xS en versiones anteriores a 3.15.1S, permite a atacantes remotos pro... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150923-iosxe • CWE-20: Improper Input Validation CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 29EXPL: 0CVE-2015-4293
https://notcve.org/view.php?id=CVE-2015-4293
30 Jul 2015 — The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (CPU consumption or packet loss) via fragmented (1) IPv4 or (2) IPv6 packets that trigger ATTN-3-SYNC_TIMEOUT errors after reassembly failures, aka Bug ID CSCuo37957. Vulnerabilidad en la implementación del ensamblado de paquetes en Cisco IOS XE 3.13S y versiones anteriores, permite a atacantes remotos causar una denegación de servicio (consumo de CPU o pérdida del paquete) a través de... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40215 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 62EXPL: 0CVE-2015-0681
https://notcve.org/view.php?id=CVE-2015-0681
24 Jul 2015 — The TFTP server in Cisco IOS 12.2(44)SQ1, 12.2(33)XN1, 12.4(25e)JAM1, 12.4(25e)JAO5m, 12.4(23)JY, 15.0(2)ED1, 15.0(2)EY3, 15.1(3)SVF4a, and 15.2(2)JB1 and IOS XE 2.5.x, 2.6.x, 3.1.xS, 3.2.xS, 3.3.xS, 3.4.xS, and 3.5.xS before 3.6.0S; 3.1.xSG, 3.2.xSG, and 3.3.xSG before 3.4.0SG; 3.2.xSE before 3.3.0SE; 3.2.xXO before 3.3.0XO; 3.2.xSQ; 3.3.xSQ; and 3.4.xSQ allows remote attackers to cause a denial of service (device hang or reload) via multiple requests that trigger improper memory management, aka Bug ID CSC... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-tftp • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2015-0685
https://notcve.org/view.php?id=CVE-2015-0685
03 Apr 2015 — Cisco IOS XE before 3.7.5S on ASR 1000 devices does not properly handle route adjacencies, which allows remote attackers to cause a denial of service (device hang) via crafted IP packets, aka Bug ID CSCub31873. Cisco IOS XE anterior a 3.7.5S en los dispositivos ASR 1000 no maneja correctamente adyacencias de rutas, lo que permite a atacantes remotos causar una denegación de servicio (cuelgue de dispositivo) a través de paquetes IP manipulados, también conocido como Bug ID CSCub31873. • http://tools.cisco.com/security/center/viewAlert.x?alertId=38124 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 48EXPL: 0CVE-2015-0640
https://notcve.org/view.php?id=CVE-2015-0640
26 Mar 2015 — The high-speed logging (HSL) feature in Cisco IOS XE 2.x and 3.x before 3.10.4S, 3.11 before 3.11.3S, 3.12 before 3.12.1S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to cause a denial of service (device reload) via large IP packets that require NAT and HSL processing after fragmentation, aka Bug ID CSCuo25741. La característica high-speed logging (HSL) en Cisco IOS XE 2.x y 3.x anterior a 3.10.4S, 3.11 anterior a 3.11.3S, 3.12 anterior a 3.12.1S, 3.13 anterior ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-iosxe • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 84EXPL: 0CVE-2015-0642
https://notcve.org/view.php?id=CVE-2015-0642
26 Mar 2015 — Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 2.5.x, 2.6.x, 3.1.xS through 3.12.xS before 3.12.3S, 3.2.xE through 3.7.xE before 3.7.1E, 3.3.xSG, 3.4.xSG, and 3.13.xS before 3.13.2S allow remote attackers to cause a denial of service (device reload) by sending malformed IKEv2 packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCum36951. Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, y 15.4 y IOS XE 2.5.x, 2.6.x, 3.1.xS hasta 3.12.xS anterior a 3.12.3S, 3.2.xE hasta 3.7.xE anterior a 3.7.1E, 3.... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ikev2 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 40EXPL: 0CVE-2015-0645
https://notcve.org/view.php?id=CVE-2015-0645
26 Mar 2015 — The Layer 4 Redirect (L4R) feature in Cisco IOS XE 2.x and 3.x before 3.10.4S, 3.11 before 3.11.3S, 3.12 before 3.12.2S, 3.13 before 3.13.1S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to cause a denial of service (device reload) via malformed (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCuq59131. La característica Layer 4 Redirect (L4R) en Cisco IOS XE 2.x y 3.x anterior a 3.10.4S, 3.11 anterior a 3.11.3S, 3.12 anterior a 3.12.2S, 3.13 anterior a 3.13.1S, 3.14 anterior a 3.14.0S, y ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-iosxe • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 42EXPL: 0CVE-2015-0641
https://notcve.org/view.php?id=CVE-2015-0641
26 Mar 2015 — Cisco IOS XE 2.x and 3.x before 3.9.0S, 3.10 before 3.10.0S, 3.11 before 3.11.0S, 3.12 before 3.12.0S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to cause a denial of service (device reload) via crafted IPv6 packets, aka Bug ID CSCub68073. Cisco IOS XE 2.x y 3.x anterior a 3.9.0S, 3.10 anterior a 3.10.0S, 3.11 anterior a 3.11.0S, 3.12 anterior a 3.12.0S, 3.13 anterior a 3.13.0S, 3.14 anterior a 3.14.0S, y 3.15 anterior a 3.15.0S permite a atacantes remotos caus... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-iosxe • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2014-7990
https://notcve.org/view.php?id=CVE-2014-7990
07 Nov 2014 — Cisco IOS XE 3.5E and earlier on WS-C3850, WS-C3860, and AIR-CT5760 devices does not properly parse the "request system shell" challenge response, which allows local users to obtain Linux root access by leveraging administrative privilege, aka Bug ID CSCur09815. Cisco IOS XE 3.5E y anteriores en los dispositivos WS-C3850, WS-C3860, y AIR-CT5760 no analiza debidamente la respuesta al reto 'solicitar el shell del sistema', lo que permite a usuarios locales obtener acceso al root de Linux mediante el aprovecha... • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7990 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2014-3409
https://notcve.org/view.php?id=CVE-2014-3409
25 Oct 2014 — The Ethernet Connectivity Fault Management (CFM) handling feature in Cisco IOS 12.2(33)SRE9a and earlier and IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (device reload) via malformed CFM packets, aka Bug ID CSCuq93406. La caracteristica del manejador Ethernet Connectivity Fault Management (CFM) en Cisco IOS 12.2(33)SRE9a y anteriores e IOS XE 3.13S y anteriores permite a atacantes remotos causar una denegación de servicio (recarga de dispositivo) a través de paquetes CFM ma... • http://secunia.com/advisories/61799 • CWE-399: Resource Management Errors •