CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2015-6294
https://notcve.org/view.php?id=CVE-2015-6294
18 Sep 2015 — Cisco IOS 15.2(3)E and earlier and IOS XE 3.6(2)E and earlier allow remote attackers to cause a denial of service (functionality loss) via crafted Cisco Discovery Protocol (CDP) packets, aka Bug ID CSCuu25770. Vulnerabilidad en Cisco IOS 15.2(3)E y versiones anteriores y IOS XE 3.6(2)E y versiones anteriores, permite a atacantes remotos provocar una denegación de servicio (pérdida de funcionalidad) a través de paquetes Cisco Discovery Protocol (CDP) modificados, también conocida como Bug ID CSCuu25770. • http://tools.cisco.com/security/center/viewAlert.x?alertId=41006 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 62EXPL: 0CVE-2015-0681
https://notcve.org/view.php?id=CVE-2015-0681
24 Jul 2015 — The TFTP server in Cisco IOS 12.2(44)SQ1, 12.2(33)XN1, 12.4(25e)JAM1, 12.4(25e)JAO5m, 12.4(23)JY, 15.0(2)ED1, 15.0(2)EY3, 15.1(3)SVF4a, and 15.2(2)JB1 and IOS XE 2.5.x, 2.6.x, 3.1.xS, 3.2.xS, 3.3.xS, 3.4.xS, and 3.5.xS before 3.6.0S; 3.1.xSG, 3.2.xSG, and 3.3.xSG before 3.4.0SG; 3.2.xSE before 3.3.0SE; 3.2.xXO before 3.3.0XO; 3.2.xSQ; 3.3.xSQ; and 3.4.xSQ allows remote attackers to cause a denial of service (device hang or reload) via multiple requests that trigger improper memory management, aka Bug ID CSC... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-tftp • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2015-4185
https://notcve.org/view.php?id=CVE-2015-4185
13 Jun 2015 — The TCL interpreter in Cisco IOS 15.2 does not properly maintain the vty state, which allows local users to gain privileges by starting a session very soon after a TCL script execution, aka Bug ID CSCuq24202. El interprete TCL en Cisco IOS 15.2 no mantiene correctamente el estado vty, lo que permite a usuarios locales ganar privilegios mediante el comienzo de una sesión muy pronto después de una ejecución de secuencias de comandos TCL, también conocido como Bug ID CSCuq24202. • http://tools.cisco.com/security/center/viewAlert.x?alertId=39343 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.1EPSS: 0%CPEs: 43EXPL: 0CVE-2015-0635
https://notcve.org/view.php?id=CVE-2015-0635
26 Mar 2015 — The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.xS through 3.13.xS before 3.13.1S allows remote attackers to spoof Autonomic Networking Registration Authority (ANRA) responses, and consequently bypass intended device and node access restrictions or cause a denial of service (disrupted domain access), via crafted AN messages, aka Bug ID CSCup62191. La implementación Autonomic Networking Infrastructure (ANI) en Cisco IOS 12.2, 12... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ani • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 1%CPEs: 29EXPL: 0CVE-2015-0636
https://notcve.org/view.php?id=CVE-2015-0636
26 Mar 2015 — The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.xS through 3.13.xS before 3.13.1S allows remote attackers to cause a denial of service (disrupted domain access) via spoofed AN messages that reset a finite state machine, aka Bug ID CSCup62293. La implemenatción Autonomic Networking Infrastructure (ANI) en Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, y 15.4 y IOS XE 3.10.xS hasta 3.13.xS anterior a 3.13.1S permite a atacantes remotos ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ani • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 1%CPEs: 41EXPL: 0CVE-2015-0637
https://notcve.org/view.php?id=CVE-2015-0637
26 Mar 2015 — The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.xS through 3.13.xS before 3.13.1S allows remote attackers to cause a denial of service (device reload) via spoofed AN messages, aka Bug ID CSCup62315. La implemenatción Autonomic Networking Infrastructure (ANI) en Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, y 15.4 y IOS XE 3.10.xS hasta 3.13.xS anterior a 3.13.1S permite a atacantes remotos causar una denegación de servicio (recarga d... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ani • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 1%CPEs: 31EXPL: 0CVE-2015-0638
https://notcve.org/view.php?id=CVE-2015-0638
26 Mar 2015 — Cisco IOS 12.2, 12.4, 15.0, 15.2, and 15.3, when a VRF interface is configured, allows remote attackers to cause a denial of service (interface queue wedge) via crafted ICMPv4 packets, aka Bug ID CSCsi02145. Cisco IOS 12.2, 12.4, 15.0, 15.2, y 15.3, cuando una interfaz VRF está configurado, permite a atacantes remotos causar una denegación de servicio (presión en la cola de la interfaz) a través de paquetes ICMPv4 manipulados, también conocido como Bug ID CSCsi02145. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-wedge • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 1%CPEs: 84EXPL: 0CVE-2015-0642
https://notcve.org/view.php?id=CVE-2015-0642
26 Mar 2015 — Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 2.5.x, 2.6.x, 3.1.xS through 3.12.xS before 3.12.3S, 3.2.xE through 3.7.xE before 3.7.1E, 3.3.xSG, 3.4.xSG, and 3.13.xS before 3.13.2S allow remote attackers to cause a denial of service (device reload) by sending malformed IKEv2 packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCum36951. Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, y 15.4 y IOS XE 2.5.x, 2.6.x, 3.1.xS hasta 3.12.xS anterior a 3.12.3S, 3.2.xE hasta 3.7.xE anterior a 3.7.1E, 3.... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ikev2 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 1%CPEs: 63EXPL: 0CVE-2015-0643
https://notcve.org/view.php?id=CVE-2015-0643
26 Mar 2015 — Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 2.5.x, 2.6.x, 3.1.xS through 3.12.xS before 3.12.3S, 3.2.xE through 3.7.xE before 3.7.1E, 3.3.xSG, 3.4.xSG, and 3.13.xS before 3.13.2S allow remote attackers to cause a denial of service (memory consumption and device reload) by sending malformed IKEv2 packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCuo75572. Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, y 15.4 y IOS XE 2.5.x, 2.6.x, 3.1.xS hasta 3.12.xS anterior a 3.12.3S, 3.2.xE hasta 3.7.x... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ikev2 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 1%CPEs: 36EXPL: 0CVE-2015-0646
https://notcve.org/view.php?id=CVE-2015-0646
26 Mar 2015 — Memory leak in the TCP input module in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS through 3.10.xS before 3.10.5S, and 3.11.xS and 3.12.xS before 3.12.3S allows remote attackers to cause a denial of service (memory consumption or device reload) by sending crafted TCP packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCum94811. Fuga de memoria en el módulo de entradas de TCP en Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, y 15.4 y IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-tcpleak • CWE-399: Resource Management Errors •