cisco

Cisco IOS

283 Versions 13 CVEs

Versions

Recent CVEs

CVE-2019-12647

A vulnerability in the Ident protocol handler of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability exists because the affected software incorrectly handles memory structures, leading to a NULL pointer dereference. An attacker could exploit this vulnerability by opening a TCP connection to specific ports and sending traffic over that connection. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.

HIGH Sep 25, 2019

CVE-2019-1762

A vulnerability in the Secure Storage feature of Cisco IOS and IOS XE Software could allow an authenticated, local attacker to access sensitive system information on an affected device. The vulnerability is due to improper memory operations performed at encryption time, when affected software handles configuration updates. An attacker could exploit this vulnerability by retrieving the contents of specific memory locations of an affected device. A successful exploit could result in the disclosure of keying materials that are part of the device configuration, which can be used to recover critical system information.

MEDIUM Mar 28, 2019

CVE-2019-1761

A vulnerability in the Hot Standby Router Protocol (HSRP) subsystem of Cisco IOS and IOS XE Software could allow an unauthenticated, adjacent attacker to receive potentially sensitive information from an affected device. The vulnerability is due to insufficient memory initialization. An attacker could exploit this vulnerability by receiving HSRPv2 traffic from an adjacent HSRP member. A successful exploit could allow the attacker to receive potentially sensitive information from the adjacent device.

MEDIUM Mar 28, 2019

CVE-2019-1757

A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data using an invalid certificate. The vulnerability is due to insufficient certificate validation by the affected software. An attacker could exploit this vulnerability by supplying a crafted certificate to an affected device. A successful exploit could allow the attacker to conduct man-in-the-middle attacks to decrypt confidential information on user connections to the affected software.

UNKNOWN Mar 28, 2019

CVE-2019-1752

A vulnerability in the ISDN functions of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload. The vulnerability is due to incorrect processing of specific values in the Q.931 information elements. An attacker could exploit this vulnerability by calling the affected device with specific Q.931 information elements being present. An exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition on an affected device.

HIGH Mar 28, 2019

CVE-2019-1748

A vulnerability in the Cisco Network Plug-and-Play (PnP) agent of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data. The vulnerability exists because the affected software insufficiently validates certificates. An attacker could exploit this vulnerability by supplying a crafted certificate to an affected device. A successful exploit could allow the attacker to conduct man-in-the-middle attacks to decrypt and modify confidential information on user connections to the affected software.

HIGH Mar 27, 2019

CVE-2019-1737

A vulnerability in the processing of IP Service Level Agreement (SLA) packets by Cisco IOS Software and Cisco IOS XE software could allow an unauthenticated, remote attacker to cause an interface wedge and an eventual denial of service (DoS) condition on the affected device. The vulnerability is due to improper socket resources handling in the IP SLA responder application code. An attacker could exploit this vulnerability by sending crafted IP SLA packets to an affected device. An exploit could allow the attacker to cause an interface to become wedged, resulting in an eventual denial of service (DoS) condition on the affected device.

HIGH Mar 27, 2019

Cisco IOS

Versions

3.2.3SG

16.6.3

3.16.6bS

3.3.1SQ

3.3.5SE

16.9.1b

3.16.2bS

3.18.4SP

16.7.4

3.2.2SE

3.6.0E

3.13.4S

3.7.5S

16.7.1b

3.16.2aS

3.16.8S

3.16.5bS

3.13.6bS

16.8.1s

3.10.2tS

3.16.10S

3.17.4S

3.16.4S

3.6.6E

3.9.1S

16.3.5b

3.16.4bS

16.8.1d

3.8.2E

3.16.4aS

15.2(2)E6

16.6.4a

3.17.3S

3.4.3SG

3.9.2S

3.16.7S

3.18.0aS

3.6.7aE

3.14.1S

3.13.7S

3.2.6SG

3.4.6SG

3.7.0E

3.4.4SG

3.13.3S

3.10.7S

3.8.2S

16.6.4s

3.6.2aE

3.3.1XO

3.18.2aSP

3.11.3S

3.2.2SG

3.12.1S

3.15.1S

3.10.0S

3.16.0cS

3.6.8E

3.11.0S

3.12.0S

16.7.1

3.18.1aSP

3.13.0aS

3.12.0aS

3.2.0SE

16.3.4

3.16.7bS

3.16.3S

16.9.1c

3.3.2SE

3.3.3SE

3.8.5aE

16.12.1

3.18.2S

3.5.7SQ

3.8.4E

3.9.0E

3.18.1S