Page 51 of 323 results (0.012 seconds)

CVSS: 7.8EPSS: 0%CPEs: 42EXPL: 0

Cisco IOS XE 2.x and 3.x before 3.9.0S, 3.10 before 3.10.0S, 3.11 before 3.11.0S, 3.12 before 3.12.0S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to cause a denial of service (device reload) via crafted IPv6 packets, aka Bug ID CSCub68073. Cisco IOS XE 2.x y 3.x anterior a 3.9.0S, 3.10 anterior a 3.10.0S, 3.11 anterior a 3.11.0S, 3.12 anterior a 3.12.0S, 3.13 anterior a 3.13.0S, 3.14 anterior a 3.14.0S, y 3.15 anterior a 3.15.0S permite a atacantes remotos causar una denegación de servicio (recarga de dispositivo) a través de paquetes IPv6 manipulados, también conocido como Bug ID CSCub68073. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-iosxe http://www.securitytracker.com/id/1031981 • CWE-20: Improper Input Validation •

CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0

The Common Flow Table (CFT) feature in Cisco IOS XE 3.6 and 3.7 before 3.7.1S, 3.8 before 3.8.0S, 3.9 before 3.9.0S, 3.10 before 3.10.0S, 3.11 before 3.11.0S, 3.12 before 3.12.0S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S, when MMON or NBAR is enabled, allows remote attackers to cause a denial of service (device reload) via malformed IPv6 packets with IPv4 UDP encapsulation, aka Bug ID CSCua79665. La característica Common Flow Table (CFT) en Cisco IOS XE 3.6 y 3.7 anterior a 3.7.1S, 3.8 anterior a 3.8.0S, 3.9 anterior a 3.9.0S, 3.10 anterior a 3.10.0S, 3.11 anterior a 3.11.0S, 3.12 anterior a 3.12.0S, 3.13 anterior a 3.13.0S, 3.14 anterior a 3.14.0S, y 3.15 anterior a 3.15.0S, cuando MMON o NBAR está habilitado, permite a atacantes remotos causar una denegación de servicio (recarga de dispositivo) a través de paquetes IPv6 malformados con la encapsulación IPv4 UDP, también conocido como Bug ID CSCua79665. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-iosxe http://www.securitytracker.com/id/1031981 • CWE-20: Improper Input Validation •

CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 0

Cisco IOS XE 3.5E and earlier on WS-C3850, WS-C3860, and AIR-CT5760 devices does not properly parse the "request system shell" challenge response, which allows local users to obtain Linux root access by leveraging administrative privilege, aka Bug ID CSCur09815. Cisco IOS XE 3.5E y anteriores en los dispositivos WS-C3850, WS-C3860, y AIR-CT5760 no analiza debidamente la respuesta al reto 'solicitar el shell del sistema', lo que permite a usuarios locales obtener acceso al root de Linux mediante el aprovechamiento de privilegios administrativos, también conocido como Bug ID CSCur09815. • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7990 http://tools.cisco.com/security/center/viewAlert.x?alertId=36351 http://www.securityfocus.com/bid/70968 http://www.securitytracker.com/id/1031179 https://exchange.xforce.ibmcloud.com/vulnerabilities/98529 • CWE-20: Improper Input Validation •

CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0

The Ethernet Connectivity Fault Management (CFM) handling feature in Cisco IOS 12.2(33)SRE9a and earlier and IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (device reload) via malformed CFM packets, aka Bug ID CSCuq93406. La caracteristica del manejador Ethernet Connectivity Fault Management (CFM) en Cisco IOS 12.2(33)SRE9a y anteriores e IOS XE 3.13S y anteriores permite a atacantes remotos causar una denegación de servicio (recarga de dispositivo) a través de paquetes CFM malformados, también conocido como Bug ID CSCuq93406. • http://secunia.com/advisories/61799 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3409 http://tools.cisco.com/security/center/viewAlert.x?alertId=36184 http://www.securityfocus.com/bid/70715 http://www.securitytracker.com/id/1031119 https://exchange.xforce.ibmcloud.com/vulnerabilities/97758 • CWE-399: Resource Management Errors •

CVSS: 7.8EPSS: 1%CPEs: 17EXPL: 0

The metadata flow feature in Cisco IOS 15.1 through 15.3 and IOS XE 3.3.xXO before 3.3.1XO, 3.6.xS and 3.7.xS before 3.7.6S, and 3.8.xS, 3.9.xS, and 3.10.xS before 3.10.1S allows remote attackers to cause a denial of service (device reload) via malformed RSVP packets, aka Bug ID CSCue22753. La característica de flujo de metadatos en Cisco IOS 15.1 hasta 15.3 y IOS XE 3.3.xXO anterior a 3.3.1XO, 3.6.xS y 3.7.xS anterior a 3.7.6S, y 3.8.xS, 3.9.xS, y 3.10.xS anterior a 3.10.1S permite a atacantes remotos causar una denegación de servicio (recarga de dispositivo) a través de paquetes RSVP malformados, también conocido como Bug ID CSCue22753. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-metadata http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-metadata/cvrf/cisco-sa-20140924-metadata_cvrf.xml http://www.securityfocus.com/bid/70135 http://www.securitytracker.com/id/1030894 https://exchange.xforce.ibmcloud.com/vulnerabilities/96176 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •