CVSS: 7.5EPSS: 0%CPEs: 29EXPL: 0CVE-2017-6664
https://notcve.org/view.php?id=CVE-2017-6664
07 Aug 2017 — A vulnerability in the Autonomic Networking feature of Cisco IOS XE Software could allow an unauthenticated, remote, autonomic node to access the Autonomic Networking infrastructure of an affected system, after the certificate for the autonomic node has been revoked. This vulnerability affected devices that are running Release 16.x of Cisco IOS XE Software and are configured to use Autonomic Networking. This vulnerability does not affect devices that are running an earlier release of Cisco IOS XE Software o... • http://www.securityfocus.com/bid/99986 • CWE-295: Improper Certificate Validation •
CVSS: 6.5EPSS: 1%CPEs: 186EXPL: 0CVE-2017-6663 – Cisco IOS Software and Cisco IOS XE Software Denial-of-Service Vulnerability
https://notcve.org/view.php?id=CVE-2017-6663
07 Aug 2017 — A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause autonomic nodes of an affected system to reload, resulting in a denial of service (DoS) condition. More Information: CSCvd88936. Known Affected Releases: Denali-16.2.1 Denali-16.3.1. Una vulnerabilidad en la característica Autonomic Networking de Cisco IOS Software y Cisco IOS XE Software podría permitir que un atacante no autenticado y en redes adyac... • http://www.securityfocus.com/bid/99973 •
CVSS: 6.5EPSS: 0%CPEs: 187EXPL: 0CVE-2017-6665
https://notcve.org/view.php?id=CVE-2017-6665
07 Aug 2017 — A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to reset the Autonomic Control Plane (ACP) of an affected system and view ACP packets that are transferred in clear text within an affected system, an Information Disclosure Vulnerability. More Information: CSCvd51214. Known Affected Releases: Denali-16.2.1 Denali-16.3.1. Una vulnerabilidad en la funcionalidad Autonomic Networking de Cisco IOS Software y Cisco... • http://www.securityfocus.com/bid/99969 • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 6.9EPSS: 0%CPEs: 164EXPL: 0CVE-2017-6606
https://notcve.org/view.php?id=CVE-2017-6606
07 Apr 2017 — A vulnerability in a startup script of Cisco IOS XE Software could allow an unauthenticated attacker with physical access to the targeted system to execute arbitrary commands on the underlying operating system with the privileges of the root user. More Information: CSCuz06639 CSCuz42122. Known Affected Releases: 15.6(1.1)S 16.1.2 16.2.0 15.2(1)E. Known Fixed Releases: Denali-16.1.3 16.2(1.8) 16.1(2.61) 15.6(2)SP 15.6(2)S1 15.6(1)S2 15.5(3)S3a 15.5(3)S3 15.5(2)S4 15.5(1)S4 15.4(3)S6a 15.4(3)S6 15.3(3)S8a 15.... • http://www.securityfocus.com/bid/97434 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 2.5EPSS: 0%CPEs: 10EXPL: 0CVE-2016-6450
https://notcve.org/view.php?id=CVE-2016-6450
19 Nov 2016 — A vulnerability in the package unbundle utility of Cisco IOS XE Software could allow an authenticated, local attacker to gain write access to some files in the underlying operating system. This vulnerability affects the following products if they are running a vulnerable release of Cisco IOS XE Software: Cisco 5700 Series Wireless LAN Controllers, Cisco Catalyst 3650 Series Switches, Cisco Catalyst 3850 Series Switches, Cisco Catalyst 4500E Series Switches, Cisco Catalyst 4500X Series Switches. More Informa... • http://www.securityfocus.com/bid/94340 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 2%CPEs: 7EXPL: 0CVE-2016-6441
https://notcve.org/view.php?id=CVE-2016-6441
03 Nov 2016 — A vulnerability in the Transaction Language 1 (TL1) code of Cisco ASR 900 Series routers could allow an unauthenticated, remote attacker to cause a reload of, or remotely execute code on, the affected system. This vulnerability affects Cisco ASR 900 Series Aggregation Services Routers (ASR902, ASR903, and ASR907) that are running the following releases of Cisco IOS XE Software: 3.17.0S 3.17.1S 3.17.2S 3.18.0S 3.18.1S. More Information: CSCuy15175. Known Affected Releases: 15.6(1)S 15.6(2)S. Known Fixed Rele... • http://www.securityfocus.com/bid/94072 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 8%CPEs: 4EXPL: 0CVE-2016-6393
https://notcve.org/view.php?id=CVE-2016-6393
05 Oct 2016 — The AAA service in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 2.1 through 3.18 and 16.2 allows remote attackers to cause a denial of service (device reload) via a failed SSH connection attempt that is mishandled during generation of an error-log message, aka Bug ID CSCuy87667. El servicio AAA en Cisco IOS 12.0 hasta la versión 12.4 y 15.0 hasta la versión 15.6 e IOS XE 2.1 hasta la versión 3.18 y 16.2 permite a atacantes remotos provocar una denegación de servicio (recarga del dispositivo)... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-aaados • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 83EXPL: 0CVE-2016-6378
https://notcve.org/view.php?id=CVE-2016-6378
05 Oct 2016 — Cisco IOS XE 3.1 through 3.17 and 16.1 through 16.2 allows remote attackers to cause a denial of service (device reload) via crafted ICMP packets that require NAT, aka Bug ID CSCuw85853. Cisco IOS XE 3.1 hasta la versión 3.17 y 16.1 hasta la versión 16.2 permite a atacantes remotos provocar una denegación de servicio (recarga del dispositivo) a través de paquetes ICMP manipulados que requieren NAT, vulnerabilidad también conocida como Bug ID CSCuw85853. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-esp-nat • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2016-6379
https://notcve.org/view.php?id=CVE-2016-6379
05 Oct 2016 — Cisco IOS 12.2 and IOS XE 3.14 through 3.16 and 16.1 allow remote attackers to cause a denial of service (device reload) via crafted IP Detail Record (IPDR) packets, aka Bug ID CSCuu35089. Cisco IOS 12.2 e IOS XE 3.14 hasta la versión 3.16 y 16.1 permiten a atacantes remotos provocar una denegación de servicio (recarga del dispositivo) a través de paquetes IP Detail Record (IPDR) manipulados, vulnerabilidad también conocida como Bug ID CSCuu35089. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-ipdr • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 6%CPEs: 169EXPL: 0CVE-2016-6382
https://notcve.org/view.php?id=CVE-2016-6382
05 Oct 2016 — Cisco IOS 15.2 through 15.6 and IOS XE 3.6 through 3.17 and 16.1 allow remote attackers to cause a denial of service (device restart) via a malformed IPv6 Protocol Independent Multicast (PIM) register packet, aka Bug ID CSCuy16399. Cisco IOS 15.2 hasta la versión 15.6 e IOS XE 3.6 hasta la versión 3.17 y 16.1 permiten a atacantes remotos provocar una denegación de servicio (reinicio del dispositivo) a través de un paquete de registro IPv6 Protocol Independent Multicast (PIM) mal formado, vulnerabilidad tamb... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-msdp • CWE-399: Resource Management Errors •