CVSS: 6.0EPSS: 0%CPEs: 9EXPL: 0CVE-2017-6666
https://notcve.org/view.php?id=CVE-2017-6666
13 Jun 2017 — A vulnerability in the forwarding component of Cisco IOS XR Software for Cisco Network Convergence System (NCS) 5500 Series Routers could allow an authenticated, local attacker to cause the router to stop forwarding data traffic across Traffic Engineering (TE) tunnels, resulting in a denial of service (DoS) condition. More Information: CSCvd16665. Known Affected Releases: 6.2.11.BASE. Known Fixed Releases: 6.1.3 6.1.2 6.3.1.8i.BASE 6.2.11.8i.BASE 6.2.2.9i.BASE 6.1.32.11i.BASE 6.1.31.10i.BASE 6.1.4.3i.BASE. ... • http://www.securityfocus.com/bid/98987 •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2017-6599
https://notcve.org/view.php?id=CVE-2017-6599
07 Apr 2017 — A vulnerability in Google-defined remote procedure call (gRPC) handling in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause the Event Management Service daemon (emsd) to crash due to a system memory leak, resulting in a denial of service (DoS) condition. This vulnerability affects Cisco IOS XR Software with gRPC enabled. More Information: CSCvb14433. Known Affected Releases: 6.1.1.BASE 6.2.1.BASE. Known Fixed Releases: 6.2.1.22i.MGBL 6.1.22.9i.MGBL 6.1.21.12i.MGBL 6.1.2.13i.MGB... • http://www.securityfocus.com/bid/97464 • CWE-772: Missing Release of Resource after Effective Lifetime •