Cisco » IOS : Security Vulnerabilities (CVSS score between 6 and 6.99)

CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9

Sort Results By : Cve Number Descending Cve Number Ascending CVSS Score Descending Number Of Exploits Descending

Copy Results Download Results Select Table

#	CVE ID	CWE ID	Vulnerability Type(s)	Publish Date	Update Date	Score	Gained Access Level	Access	Complexity	Authentication	Conf.	Integ.	Avail.
1	CVE-2013-1241	287	DoS	2013-05-08	2013-05-08	6.3	None	Remote	Medium	Single system	None	None	Complete
The ISM module in Cisco IOS on ISR G2 routers does not properly handle authentication-header packets, which allows remote authenticated users to cause a denial of service (module reload) via a series of malformed packets, aka Bug ID CSCub92025.
2	CVE-2013-1217	119	DoS Overflow	2013-04-24	2013-04-24	6.8	None	Remote	Low	Single system	None	None	Complete
The generic input/output control implementation in Cisco IOS does not properly manage buffers, which allows remote authenticated users to cause a denial of service (device reload) by sending many SNMP requests at the same time, aka Bug ID CSCub41105.
3	CVE-2012-3895		DoS	2012-09-16	2013-01-24	6.3	None	Remote	Medium	Single system	None	None	Complete
Cisco IOS 15.0 through 15.3 allows remote authenticated users to cause a denial of service (device crash) via an MVPNv6 update, aka Bug ID CSCty89224.
4	CVE-2012-3893		DoS	2012-09-16	2012-09-17	6.3	None	Remote	Medium	Single system	None	None	Complete
The FlexVPN implementation in Cisco IOS 15.2 and 15.3 allows remote authenticated users to cause a denial of service (spoke crash) via spoke-to-spoke traffic, aka Bug ID CSCtz02622.
5	CVE-2012-1338	362	DoS	2012-08-06	2013-04-01	6.3	None	Remote	Medium	Single system	None	None	Complete
Cisco IOS 15.0 and 15.1 on Catalyst 3560 and 3750 series switches allows remote authenticated users to cause a denial of service (device reload) by completing local web authentication quickly, aka Bug ID CSCts88664.
6	CVE-2012-1327	16	DoS	2012-05-03	2012-05-10	6.1	None	Local Network	Low	Not required	None	None	Complete
dot11t/t_if_dot11_hal_ath.c in Cisco IOS 12.3, 12.4, 15.0, and 15.1 allows remote attackers to cause a denial of service (assertion failure and reboot) via 802.11 wireless traffic, as demonstrated by a video call from Apple iOS 5.0 on an iPhone 4S, aka Bug ID CSCtt94391.
7	CVE-2011-4231	20	DoS	2012-05-03	2012-05-11	6.3	None	Remote	Medium	Single system	None	None	Complete
Cisco IOS 15.1 and 15.2 and IOS XE 3.x, when configured as an IPsec hub with X.509 certificates in use, allows remote authenticated users to cause a denial of service (segmentation fault and device crash) via unspecified vectors, aka Bug ID CSCtq61128.
8	CVE-2011-3274		DoS	2011-10-03	2012-05-14	6.1	None	Local Network	Low	Not required	None	None	Complete
Unspecified vulnerability in Cisco IOS 12.2SRE before 12.2(33)SRE4, 15.0, and 15.1, and IOS XE 2.1.x through 3.3.x, when an MPLS domain is configured, allows remote attackers to cause a denial of service (device crash) via a crafted IPv6 packet, related to an expired MPLS TTL, aka Bug ID CSCto07919.
9	CVE-2011-0348	264	Bypass	2011-01-28	2011-02-05	6.4	None	Remote	Low	Not required	Partial	Partial	None
Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD before 12.4(24)MD3, 12.4(22)MDA before 12.4(22)MDA5, and 12.4(24)MDA before 12.4(24)MDA3 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to bypass intended access restrictions and intended billing restrictions by sending HTTP traffic to a restricted destination after sending HTTP traffic to an unrestricted destination, aka Bug ID CSCtk35917.
10	CVE-2009-5040	399	DoS	2011-01-07	2011-01-22	6.8	None	Remote	Low	Single system	None	None	Complete
CallManager Express (CME) on Cisco IOS before 15.0(1)XA allows remote authenticated users to cause a denial of service (device crash) by using an extension mobility (EM) phone to interact with the menu for SNR number changes, aka Bug ID CSCta63555.
11	CVE-2009-2872		DoS	2009-09-28	2009-10-01	6.8	None	Remote	Low	Single system	None	None	Complete
Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco Express Forwarding feature are enabled, allows remote attackers to cause a denial of service (device reload) via a malformed packet that is not properly handled during switching from one tunnel to a second tunnel, aka Bug IDs CSCsh97579 and CSCsq31776.
12	CVE-2009-0471	352	Exec Code CSRF	2009-02-06	2009-02-12	6.8	User	Remote	Medium	Not required	Partial	Partial	Partial
Cross-site request forgery (CSRF) vulnerability in the HTTP server in Cisco IOS 12.4(23) allows remote attackers to execute arbitrary commands, as demonstrated by executing the hostname command with a level/15/configure/-/hostname request.
13	CVE-2008-5230	310		2008-11-25	2008-12-03	6.8	User	Remote	Medium	Not required	Partial	Partial	Partial
The Temporal Key Integrity Protocol (TKIP) implementation in unspecified Cisco products and other vendors' products, as used in WPA and WPA2 on Wi-Fi networks, has insufficient countermeasures against certain crafted and replayed packets, which makes it easier for remote attackers to decrypt packets from an access point (AP) to a client and spoof packets from an AP to a client, and conduct ARP poisoning attacks or other attacks, as demonstrated by tkiptun-ng.
14	CVE-2007-5548	119	Overflow +Priv	2007-10-18	2008-11-15	6.9	Admin	Local	Medium	Not required	Complete	Complete	Complete
Multiple stack-based buffer overflows in Command EXEC in Cisco IOS allow local users to gain privileges via unspecified vectors, aka (1) PSIRT-0474975756 and (2) PSIRT-0388256465. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes.
15	CVE-2007-4295		Exec Code	2007-08-09	2009-03-04	6.8	User	Remote	Medium	Not required	Partial	Partial	Partial
Unspecified vulnerability in Cisco IOS 12.0 through 12.4 allows remote attackers to execute arbitrary code via a malformed SIP packet, aka CSCsi80749.
16	CVE-2007-2587		DoS	2007-05-09	2009-03-04	6.3	None	Remote	Medium	Single system	None	None	Complete
The IOS FTP Server in Cisco IOS 11.3 through 12.4 allows remote authenticated users to cause a denial of service (IOS reload) via unspecified vectors involving transferring files (aka bug ID CSCse29244).
17	CVE-2007-1258		DoS	2007-03-03	2009-03-16	6.1	None	Local Network	Low	Not required	None	None	Complete
Unspecified vulnerability in Cisco IOS 12.2SXA, SXB, SXD, and SXF; and the MSFC2, MSFC2a and MSFC3 running in Hybrid Mode on Cisco Catalyst 6000, 6500 and Cisco 7600 series systems; allows remote attackers on a local network segment to cause a denial of service (software reload) via a certain MPLS packet.
18	CVE-2007-0917		Bypass	2007-02-13	2009-03-04	6.4	None	Remote	Low	Not required	Partial	Partial	None
The Intrusion Prevention System (IPS) feature for Cisco IOS 12.4XE to 12.3T allows remote attackers to bypass IPS signatures that use regular expressions via fragmented packets.
19	CVE-2005-4826		DoS	2005-12-31	2009-03-04	6.1	None	Local Network	Low	Not required	None	None	Complete
Unspecified vulnerability in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(22)EA3 on Catalyst 2950T switches allows remote attackers to cause a denial of service (device reboot) via a crafted Subset-Advert message packet, a different issue than CVE-2006-4774, CVE-2006-4775, and CVE-2006-4776.
20	CVE-2005-0197	16	DoS	2005-05-02	2009-03-04	6.1	None	Local Network	Low	Not required	None	None	Complete
Cisco IOS 12.1T, 12.2, 12.2T, 12.3 and 12.3T, with Multi Protocol Label Switching (MPLS) installed but disabled, allows remote attackers to cause a denial of service (device reload) via a crafted packet sent to the disabled interface.

Total number of vulnerabilities : 20 Page : 1 (This Page)