CVSS: 7.8EPSS: 1%CPEs: 95EXPL: 0CVE-2015-6282
https://notcve.org/view.php?id=CVE-2015-6282
25 Sep 2015 — Cisco IOS XE 2.x and 3.x before 3.10.6S, 3.11.xS through 3.13.xS before 3.13.3S, and 3.14.xS through 3.15.xS before 3.15.1S allows remote attackers to cause a denial of service (device reload) via IPv4 packets that require NAT and MPLS actions, aka Bug ID CSCut96933. Vulnerabilidad en Cisco IOS XE 2.x y 3.x en versiones anteriores a 3.10.6S, 3.11.xS hasta la versión 3.13.xS en versiones anteriores a 3.13.3S y 3.14.xS hasta la versión 3.15.xS en versiones anteriores a 3.15.1S, permite a atacantes remotos pro... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150923-iosxe • CWE-20: Improper Input Validation CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 1%CPEs: 23EXPL: 0CVE-2015-6271
https://notcve.org/view.php?id=CVE-2015-6271
31 Aug 2015 — Cisco IOS XE 2.1.0 through 2.4.3 and 2.5.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted SIP packet, aka Bug IDs CSCta74749 and CSCta77008. Vulnerabilidad en Cisco IOS XE 2.1.0 hasta la versión 2.4.3 y 2.5.0 en dispositivos ASR 1000, cuando se utiliza NAT Application Layer Gateway, permite a atacantes remotos causar una denegación de servicio (caída de Embedded Services Processor) a trav... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40688 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 1%CPEs: 15EXPL: 0CVE-2015-6272
https://notcve.org/view.php?id=CVE-2015-6272
31 Aug 2015 — Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted H.323 packet, aka Bug ID CSCsx35393, CSCsx07094, and CSCsw93064. Vulnerabilidad en Cisco IOS XE 2.1.0 hasta la versión 2.2.3 y 2.3.0 en dispositivos ASR 1000, cuando se utiliza NAT Application Layer Gateway, permite a atacantes remotos causar una denegación de servicio (caída de Embedded Services Pro... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40689 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 1%CPEs: 13EXPL: 0CVE-2015-4291
https://notcve.org/view.php?id=CVE-2015-4291
01 Aug 2015 — Cisco IOS XE 2.x before 2.4.3 and 2.5.x before 2.5.1 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted series of fragmented (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCtd72617. Vulnerabilidad en Cisco IOS XE 2.x en versiones anteriores a 2.4.3 y 2.5.x e versiones anteriores a 2.5.1 en dispositivos ASR 1000, permite a atacantes remotos provocar una denegación de servicio (caída de Embedded Services Processor) a través de una serie de pa... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150730-asr1k • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 29EXPL: 0CVE-2015-4293
https://notcve.org/view.php?id=CVE-2015-4293
30 Jul 2015 — The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (CPU consumption or packet loss) via fragmented (1) IPv4 or (2) IPv6 packets that trigger ATTN-3-SYNC_TIMEOUT errors after reassembly failures, aka Bug ID CSCuo37957. Vulnerabilidad en la implementación del ensamblado de paquetes en Cisco IOS XE 3.13S y versiones anteriores, permite a atacantes remotos causar una denegación de servicio (consumo de CPU o pérdida del paquete) a través de... • http://tools.cisco.com/security/center/viewAlert.x?alertId=40215 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2015-0685
https://notcve.org/view.php?id=CVE-2015-0685
03 Apr 2015 — Cisco IOS XE before 3.7.5S on ASR 1000 devices does not properly handle route adjacencies, which allows remote attackers to cause a denial of service (device hang) via crafted IP packets, aka Bug ID CSCub31873. Cisco IOS XE anterior a 3.7.5S en los dispositivos ASR 1000 no maneja correctamente adyacencias de rutas, lo que permite a atacantes remotos causar una denegación de servicio (cuelgue de dispositivo) a través de paquetes IP manipulados, también conocido como Bug ID CSCub31873. • http://tools.cisco.com/security/center/viewAlert.x?alertId=38124 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2014-7990
https://notcve.org/view.php?id=CVE-2014-7990
07 Nov 2014 — Cisco IOS XE 3.5E and earlier on WS-C3850, WS-C3860, and AIR-CT5760 devices does not properly parse the "request system shell" challenge response, which allows local users to obtain Linux root access by leveraging administrative privilege, aka Bug ID CSCur09815. Cisco IOS XE 3.5E y anteriores en los dispositivos WS-C3850, WS-C3860, y AIR-CT5760 no analiza debidamente la respuesta al reto 'solicitar el shell del sistema', lo que permite a usuarios locales obtener acceso al root de Linux mediante el aprovecha... • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7990 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0CVE-2014-3409
https://notcve.org/view.php?id=CVE-2014-3409
25 Oct 2014 — The Ethernet Connectivity Fault Management (CFM) handling feature in Cisco IOS 12.2(33)SRE9a and earlier and IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (device reload) via malformed CFM packets, aka Bug ID CSCuq93406. La caracteristica del manejador Ethernet Connectivity Fault Management (CFM) en Cisco IOS 12.2(33)SRE9a y anteriores e IOS XE 3.13S y anteriores permite a atacantes remotos causar una denegación de servicio (recarga de dispositivo) a través de paquetes CFM ma... • http://secunia.com/advisories/61799 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 4%CPEs: 131EXPL: 0CVE-2014-3354
https://notcve.org/view.php?id=CVE-2014-3354
25 Sep 2014 — Cisco IOS 12.0, 12.2, 12.4, 15.0, 15.1, 15.2, and 15.3 and IOS XE 2.x and 3.x before 3.7.4S; 3.2.xSE and 3.3.xSE before 3.3.2SE; 3.3.xSG and 3.4.xSG before 3.4.4SG; and 3.8.xS, 3.9.xS, and 3.10.xS before 3.10.1S allow remote attackers to cause a denial of service (device reload) via malformed RSVP packets, aka Bug ID CSCui11547. Cisco IOS 12.0, 12.2, 12.4, 15.0, 15.1, 15.2, y 15.3 y IOS XE 2.x y 3.x anterior a 3.7.4S; 3.2.xSE y 3.3.xSE anterior a 3.3.2SE; 3.3.xSG y 3.4.xSG anterior a 3.4.4SG; y 3.8.xS, 3.9.... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-rsvp • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 13EXPL: 0CVE-2014-2183
https://notcve.org/view.php?id=CVE-2014-2183
29 Apr 2014 — The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of service (ESP card reload) via a malformed L2TP packet, aka Bug ID CSCun09973. El módulo L2TP en Cisco IOS XE 3.10S(.2) y anteriores en routers ASR 1000 permite a usuarios remotos autenticados causar una denegación de servicio (reinicio de tarjeta ESP) a través de un paquete L2TP manipulado, también conocido como Bug ID CSCun09973. • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2183 • CWE-20: Improper Input Validation •