CVSS: 7.8EPSS: 0%CPEs: 38EXPL: 0CVE-2016-1349
https://notcve.org/view.php?id=CVE-2016-1349
26 Mar 2016 — The Smart Install client implementation in Cisco IOS 12.2, 15.0, and 15.2 and IOS XE 3.2 through 3.7 allows remote attackers to cause a denial of service (device reload) via crafted image list parameters in a Smart Install packet, aka Bug ID CSCuv45410. La implementación del cliente Smart Install en Cisco IOS 12.2, 15.0 y 15.2 y IOS XE 3.2 hasta la versión 3.7 permite a atacantes remotos provocar una denegación de servicio (recarga de dispositivo) a través de parámetros de lista de imágenes manipulados en u... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-smi • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 18EXPL: 0CVE-2015-6429
https://notcve.org/view.php?id=CVE-2015-6429
19 Dec 2015 — The IKEv1 state machine in Cisco IOS 15.4 through 15.6 and IOS XE 3.15 through 3.17 allows remote attackers to cause a denial of service (IPsec connection termination) via a crafted IKEv1 packet to a tunnel endpoint, aka Bug ID CSCuw08236. La máquina de estado IKEv1 en Cisco IOS 15.4 hasta la versión 15.6 y IOS XE 3.15 hasta la versión 3.17 permite a atacantes remotos causar una denegación de servicio (terminación de conexión IPsec) a través de un paquete IKEv1 manipulado en un dispositivo final del tunel, ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151218-ios • CWE-19: Data Processing Errors •
CVSS: 7.8EPSS: 0%CPEs: 139EXPL: 0CVE-2015-6279
https://notcve.org/view.php?id=CVE-2015-6279
28 Sep 2015 — The IPv6 snooping functionality in the first-hop security subsystem in Cisco IOS 12.2, 15.0, 15.1, 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.2SE, 3.3SE, 3.3XO, 3.4SG, 3.5E, and 3.6E before 3.6.3E; 3.7E before 3.7.2E; 3.9S and 3.10S before 3.10.6S; 3.11S before 3.11.4S; 3.12S and 3.13S before 3.13.3S; and 3.14S before 3.14.2S allows remote attackers to cause a denial of service (device reload) via a malformed ND packet with the Cryptographically Generated Address (CGA) option, aka Bug ID CSCuo04400. Vulnerabil... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150923-fhs • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 155EXPL: 0CVE-2015-6278
https://notcve.org/view.php?id=CVE-2015-6278
28 Sep 2015 — The IPv6 snooping functionality in the first-hop security subsystem in Cisco IOS 12.2, 15.0, 15.1, 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.2SE, 3.3SE, 3.3XO, 3.4SG, 3.5E, and 3.6E before 3.6.3E; 3.7E before 3.7.2E; 3.9S and 3.10S before 3.10.6S; 3.11S before 3.11.4S; 3.12S and 3.13S before 3.13.3S; and 3.14S before 3.14.2S does not properly implement the Control Plane Protection (aka CPPr) feature, which allows remote attackers to cause a denial of service (device reload) via a flood of ND packets, aka Bug ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150923-fhs • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 74EXPL: 0CVE-2015-6280
https://notcve.org/view.php?id=CVE-2015-6280
28 Sep 2015 — The SSHv2 functionality in Cisco IOS 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.6E before 3.6.3E, 3.7E before 3.7.1E, 3.10S before 3.10.6S, 3.11S before 3.11.4S, 3.12S before 3.12.3S, 3.13S before 3.13.3S, and 3.14S before 3.14.1S does not properly implement RSA authentication, which allows remote attackers to obtain login access by leveraging knowledge of a username and the associated public key, aka Bug ID CSCus73013. Vulnerabilidad en la funcionalidad SSHv2 en Cisco IOS 15.2, 15.3, 15.4 y 15.5 y IOS XE 3.6E... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150923-sshpk • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 95EXPL: 0CVE-2015-6282
https://notcve.org/view.php?id=CVE-2015-6282
25 Sep 2015 — Cisco IOS XE 2.x and 3.x before 3.10.6S, 3.11.xS through 3.13.xS before 3.13.3S, and 3.14.xS through 3.15.xS before 3.15.1S allows remote attackers to cause a denial of service (device reload) via IPv4 packets that require NAT and MPLS actions, aka Bug ID CSCut96933. Vulnerabilidad en Cisco IOS XE 2.x y 3.x en versiones anteriores a 3.10.6S, 3.11.xS hasta la versión 3.13.xS en versiones anteriores a 3.13.3S y 3.14.xS hasta la versión 3.15.xS en versiones anteriores a 3.15.1S, permite a atacantes remotos pro... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150923-iosxe • CWE-20: Improper Input Validation CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2015-6294
https://notcve.org/view.php?id=CVE-2015-6294
18 Sep 2015 — Cisco IOS 15.2(3)E and earlier and IOS XE 3.6(2)E and earlier allow remote attackers to cause a denial of service (functionality loss) via crafted Cisco Discovery Protocol (CDP) packets, aka Bug ID CSCuu25770. Vulnerabilidad en Cisco IOS 15.2(3)E y versiones anteriores y IOS XE 3.6(2)E y versiones anteriores, permite a atacantes remotos provocar una denegación de servicio (pérdida de funcionalidad) a través de paquetes Cisco Discovery Protocol (CDP) modificados, también conocida como Bug ID CSCuu25770. • http://tools.cisco.com/security/center/viewAlert.x?alertId=41006 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2015-6272
https://notcve.org/view.php?id=CVE-2015-6272
31 Aug 2015 — Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted H.323 packet, aka Bug ID CSCsx35393, CSCsx07094, and CSCsw93064. Vulnerabilidad en Cisco IOS XE 2.1.0 hasta la versión 2.2.3 y 2.3.0 en dispositivos ASR 1000, cuando se utiliza NAT Application Layer Gateway, permite a atacantes remotos causar una denegación de servicio (caída de Embedded Services Pro... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40689 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2015-6269
https://notcve.org/view.php?id=CVE-2015-6269
31 Aug 2015 — Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted (1) IPv4 or (2) IPv6 packet, aka Bug ID CSCsw69990. Vulnerabilidad en Cisco IOS XE en versiones anteriores a 2.2.3 en dispositivos ASR 1000, permite a atacantes remotos causar una denegación de servicio (caída de Embedded Services Processor) a través de la manipulación de un paquete (1) IPv4 (2) IPv6, también conocido como Bug ID CSCsw69990. • http://tools.cisco.com/security/center/viewAlert.x?alertId=40686 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 23EXPL: 0CVE-2015-6271
https://notcve.org/view.php?id=CVE-2015-6271
31 Aug 2015 — Cisco IOS XE 2.1.0 through 2.4.3 and 2.5.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted SIP packet, aka Bug IDs CSCta74749 and CSCta77008. Vulnerabilidad en Cisco IOS XE 2.1.0 hasta la versión 2.4.3 y 2.5.0 en dispositivos ASR 1000, cuando se utiliza NAT Application Layer Gateway, permite a atacantes remotos causar una denegación de servicio (caída de Embedded Services Processor) a trav... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40688 • CWE-399: Resource Management Errors •