Cisco IOS XR on ASR 9000 devices does not properly use compression for port-range and address-range encoding, which allows remote attackers to bypass intended Typhoon line-card ACL restrictions via transit traffic, aka Bug ID CSCup30133.
Max CVSS
7.5
EPSS Score
0.40%
Published
2014-10-05
Updated
2014-10-06
Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of IP packets, which allows remote attackers to cause a denial of service (chip and card hangs) via malformed (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCuo68417.
Max CVSS
6.1
EPSS Score
0.61%
Published
2014-07-24
Updated
2017-01-12
Cisco IOS XR on Trident line cards in ASR 9000 devices lacks a static punt policer, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted packets, aka Bug ID CSCun83985.
Max CVSS
6.4
EPSS Score
0.77%
Published
2014-07-07
Updated
2017-01-12
Cisco IOS XR 4.1.2 through 5.1.1 on ASR 9000 devices, when a Trident-based line card is used, allows remote attackers to cause a denial of service (NP chip and line card reload) via malformed IPv6 packets, aka Bug ID CSCun71928.
Max CVSS
7.1
EPSS Score
0.30%
Published
2014-06-14
Updated
2016-09-07
4 vulnerabilities found