Cisco » Asr 9000 Rsp440 Router : Security Vulnerabilities, CVEs, CVSS score >= 4
Cisco IOS XR on ASR 9000 devices does not properly use compression for port-range and address-range encoding, which allows remote attackers to bypass intended Typhoon line-card ACL restrictions via transit traffic, aka Bug ID CSCup30133.
Max CVSS
7.5
EPSS Score
0.40%
Published
2014-10-05
Updated
2014-10-06
Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of packets with multicast destination MAC addresses, which allows remote attackers to cause a denial of service (chip and card hangs) via a crafted packet, aka Bug ID CSCup77750.
Max CVSS
4.6
EPSS Score
0.79%
Published
2014-08-26
Updated
2017-08-29
Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of IP packets, which allows remote attackers to cause a denial of service (chip and card hangs) via malformed (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCuo68417.
Max CVSS
6.1
EPSS Score
0.61%
Published
2014-07-24
Updated
2017-01-12
Cisco IOS XR 4.3.4 and earlier on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote attackers to cause a denial of service (chip and card hangs) via a series of crafted MPLS packets, aka Bug ID CSCuo91149.
Max CVSS
5.7
EPSS Score
0.24%
Published
2014-07-18
Updated
2017-01-12
Cisco IOS XR on Trident line cards in ASR 9000 devices lacks a static punt policer, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted packets, aka Bug ID CSCun83985.
Max CVSS
6.4
EPSS Score
0.77%
Published
2014-07-07
Updated
2017-01-12
Cisco IOS XR before 4.2.1 on ASR 9000 series devices and CRS series devices allows remote attackers to cause a denial of service (packet transmission outage) via a crafted packet, aka Bug IDs CSCty94537 and CSCtz62593.
Max CVSS
7.8
EPSS Score
0.49%
Published
2012-05-31
Updated
2012-08-25
Cisco IOS before 15.1(1)SY on ASR 1000 devices, when Multicast Listener Discovery (MLD) tracking is enabled for IPv6, allows remote attackers to cause a denial of service (device reload) via crafted MLD packets, aka Bug ID CSCtz28544.
Max CVSS
6.1
EPSS Score
0.21%
Published
2014-04-23
Updated
2021-10-05
7 vulnerabilities found