Latest cisco ios xr Vulnerabilities

CVE-2023-44487
- Rapid Reset HTTP/2 vulnerability
Microsoft Windows 11=21H2
Microsoft Windows 11=21H2
Microsoft Windows Server 2022
Microsoft Windows Server 2022
Microsoft Windows 11=22H2
Microsoft Windows 11=22H2
and 553 more
CVE-2023-20190
A vulnerability in the classic access control list (ACL) compression feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass the protection that is offered by a conf...
Cisco IOS XR<7.3.5
Cisco IOS XR>=7.5<7.5.4
Cisco IOS XR>=7.6<7.8.2
Cisco IOS XR=7.9
Cisco IOS XR<7.3.5
Cisco IOS XR>=7.5<7.5.4
and 2 more
CVE-2023-20191
A vulnerability in the access control list (ACL) processing on MPLS interfaces in the ingress direction of Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configured ...
Cisco IOS XR<7.7.21
Cisco IOS XR>=7.8<7.9.2
Cisco IOS XR=7.10
Cisco IOS XR<7.7.21
Cisco IOS XR>=7.8<7.9.2
Cisco IOS XR=7.10
CVE-2023-20233
A vulnerability in the Connectivity Fault Management (CFM) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected ...
Cisco IOS XR<7.5.4
Cisco IOS XR>=7.6<7.6.3
Cisco IOS XR>=7.7<7.7.21
Cisco IOS XR>=7.8<7.8.2
Cisco IOS XR=7.9.0
CVE-2023-20236
A vulnerability in the iPXE boot function of Cisco IOS XR software could allow an authenticated, local attacker to install an unverified software image on an affected device. This vulnerability is ...
Cisco IOS XR<7.10.1
Cisco 8201
Cisco 8202
Cisco 8208
Cisco 8212
Cisco 8218
and 102 more
CVE-2023-20135
A vulnerability in Cisco IOS XR Software image verification checks could allow an authenticated, local attacker to execute arbitrary code on the underlying operating system. This vulnerability is d...
Cisco IOS XR>=7.5.2<7.6
Cisco IOS XR>=7.7<7.10.1
Cisco IOS XR>=7.5.2<7.6
Cisco IOS XR>=7.7<7.10.1
CVE-2023-20064
A vulnerability in the GRand Unified Bootloader (GRUB) for Cisco IOS XR Software could allow an unauthenticated attacker with physical access to the device to view sensitive files on the console using...
Cisco IOS XR<7.9.1
Cisco Asr 9000v-v2
Cisco Asr 9001
Cisco Asr 9006
Cisco Asr 9010
Cisco Asr 9901
and 37 more
CVE-2023-20049
A vulnerability in the bidirectional forwarding detection (BFD) hardware offload feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers, ASR 9902 Compact High-Performa...
Cisco IOS XR<7.5.3
Cisco IOS XR>=7.6<7.6.2
Cisco IOS XR=7.7
Cisco Asr 9000v-v2
Cisco Asr 9001
Cisco Asr 9006
and 9 more
CVE-2022-20821
Cisco IOS XR Open Port Vulnerability
Cisco IOS XR
Cisco 8201
Cisco 8202
Cisco 8208
Cisco 8212
and 23 more
cisco-sa-iosxr-redis-ABJyE5xK
Cisco IOS XR Software Health Check Open Port Vulnerability
Cisco IOS XR>=7.2 and earlier=7.3.15, 7.3.16, 7.3.1, and 7.3.2<=7.3.3<SMU ID: 8000-7.3.3.CSCwb82689 and 7.3.4
CVE-2022-20714
A vulnerability in the data plane microcode of Lightspeed-Plus line cards for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause the line card ...
Cisco IOS XR
Cisco Asr 9902
Cisco Asr 9903
CVE-2022-20758
A vulnerability in the implementation of the Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial ...
Cisco IOS XR<6.8.2
Cisco IOS XR>=7.0<7.3.2
Cisco IOS XR>=7.4<7.4.2
CVE-2021-40120
A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker with administrative privileges to inject arbitrary...
Cisco IOS XR=4.2.3.06
Cisco Rv016
Cisco Rv042
Cisco Rv042g
Cisco Rv082
Cisco RV320
and 2 more
CVE-2021-34714
Cisco FXOS>=2.2<2.2.2.148
Cisco FXOS>=2.3<2.3.1.216
Cisco FXOS>=2.4<2.4.1.273
Cisco FXOS>=2.6<2.6.1.224
Cisco FXOS>=2.7<2.7.1.143
Cisco FXOS>=2.8<2.8.1.143
and 244 more
CVE-2021-34771
A vulnerability in the Cisco IOS XR Software CLI could allow an authenticated, local attacker to view more information than their privileges allow. This vulnerability is due to insufficient applicatio...
Cisco IOS XR<7.3.2
CVE-2021-34720
A vulnerability in the IP Service Level Agreements (IP SLA) responder and Two-Way Active Measurement Protocol (TWAMP) features of Cisco IOS XR Software could allow an unauthenticated, remote attacker ...
Cisco IOS XR<6.2.3
Cisco IOS XR>=6.3.0<6.3.2
Cisco IOS XR>=6.5.0<7.2.2
Cisco Asr 9000v-v2
Cisco Asr 9001
Cisco Asr 9006
and 42 more
CVE-2021-34718
A vulnerability in the SSH Server process of Cisco IOS XR Software could allow an authenticated, remote attacker to overwrite and read arbitrary files on the local device. This vulnerability is due to...
Cisco IOS XR<7.3.2
Cisco IOS XR>=7.4.0<7.4.1
Cisco Asr 9000v-v2
Cisco Asr 9001
Cisco Asr 9006
Cisco Asr 9010
and 31 more
CVE-2021-34728
Cisco IOS XR<7.3.2
Cisco IOS XR>=7.4.0<7.4.1
Cisco Asr 9000v-v2
Cisco Asr 9001
Cisco Asr 9006
Cisco Asr 9010
and 41 more
CVE-2021-34722
Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to gain access to the underlying root shell of an affected device and execute arbitrary comman...
Cisco IOS XR>=7.1.1<7.3.2
Cisco IOS XR>=7.4.0<7.4.1
Cisco Asr 9000v-v2
Cisco Asr 9001
Cisco Asr 9006
Cisco Asr 9010
and 39 more
CVE-2021-34737
A vulnerability in the DHCP version 4 (DHCPv4) server feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to trigger a crash of the dhcpd process, resulting in a denial of...
Cisco IOS XR<7.3.2
Cisco IOS XR>=7.4.0<=7.4.1
Cisco Asr 9000v-v2
Cisco Asr 9001
Cisco Asr 9006
Cisco Asr 9010
and 33 more
CVE-2021-34721
Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to gain access to the underlying root shell of an affected device and execute arbitrary comman...
Cisco IOS XR<7.3.2
Cisco IOS XR>=7.4.0<=7.4.1
Cisco Asr 9000v-v2
Cisco Asr 9001
Cisco Asr 9006
Cisco Asr 9010
and 40 more
CVE-2021-34719
Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker with a low-privileged account to elevate privileges on an affected device. For more informatio...
Cisco IOS XR<7.3.2
Cisco IOS XR>=7.4.0<=7.4.1
Cisco Asr 9000v-v2
Cisco Asr 9001
Cisco Asr 9006
Cisco Asr 9010
and 42 more
CVE-2021-34709
Multiple vulnerabilities in image verification checks of Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software fo...
Cisco IOS XR<7.3.2
Cisco 8101-32fh
Cisco 8101-32h
Cisco 8102-64h
Cisco 8201
Cisco 8201-32fh
and 18 more
CVE-2021-34708
Multiple vulnerabilities in image verification checks of Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software fo...
Cisco IOS XR<7.3.2
Cisco 8101-32fh
Cisco 8101-32h
Cisco 8102-64h
Cisco 8201
Cisco 8201-32fh
and 18 more
CVE-2021-1485
A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges on the underlying Linux operating s...
Cisco IOS XR<7.3.1
CVE-2021-1370
A vulnerability in a CLI command of Cisco IOS XR Software for the Cisco 8000 Series Routers and Network Convergence System 540 Series Routers running NCS540L software images could allow an authenticat...
Cisco IOS XR<7.0.12
Cisco IOS XR>=7.1.0<7.2.1
Cisco 8201
Cisco 8202
Cisco 8808
Cisco 8812
and 3 more
CVE-2021-1288
Multiple vulnerabilities in the ingress packet processing function of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected ...
Cisco IOS XR>=5.0.0<5.2.6
Cisco IOS XR>=5.3.0<5.3.4
Cisco IOS XR>=6.0.0<6.0.2
CVE-2021-1313
Multiple vulnerabilities in the ingress packet processing function of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected ...
Cisco IOS XR>=5.0.0<5.2.6
Cisco IOS XR>=5.3.0<5.3.4
CVE-2021-1268
A vulnerability in the IPv6 protocol handling of the management interfaces of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause an IPv6 flood on the management interface...
Cisco IOS XR<6.7.3
Cisco IOS XR>=7.1.0<7.1.3
Cisco IOS XR>=7.2.0<7.2.2
Cisco IOS XR=7.3.0
Cisco Ncs 1001
Cisco Ncs 1002
CVE-2021-1243
Cisco IOS XR>6.1.1<6.6.4
Cisco IOS XR>=7.0.0<7.0.2
Cisco IOS XR=6.7.1
Cisco IOS XR=7.0.11
Cisco IOS XR=7.1.0
Cisco IOS XR=7.2.0
CVE-2021-1128
A vulnerability in the CLI parser of Cisco IOS XR Software could allow an authenticated, local attacker to view more information than their privileges allow. The vulnerability is due to insufficient a...
Cisco IOS XR<7.1.2
Cisco IOS XR=7.2.0
Cisco IOS XR=7.3.0
CVE-2021-1244
Multiple vulnerabilities in Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for the Cisco 8000 Series Route...
Cisco IOS XR<7.0.12
Cisco IOS XR>=7.1.0<7.2.1
Cisco 8201
Cisco 8202
Cisco 8808
Cisco 8812
and 3 more
CVE-2020-26070
A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause a den...
Cisco IOS XR<6.7.2
Cisco IOS XR>=7.1.0<7.1.2
Cisco Asr 9000v=v2
Cisco Asr 9001
Cisco Asr 9006
Cisco Asr 9010
and 7 more
CVE-2020-3284
A vulnerability in the enhanced Preboot eXecution Environment (PXE) boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE...
Cisco A9k-rsp880-se Firmware<10.65
Cisco IOS XR<6.5.2
Cisco A9k-rsp880-se
Cisco A9k-rsp880-tr Firmware<10.65
Cisco A9k-rsp880-tr
Cisco A99-rp2-se Firmware<14.35
and 86 more
CVE-2020-3569
Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability
Cisco IOS XR
Cisco 8201
Cisco 8202
Cisco 8808
Cisco 8812
Cisco 8818
and 26 more
CVE-2019-16023
Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a de...
Cisco IOS XR=6.6.1
Cisco ASR 9000
Cisco Asr 9010
Cisco Asr 9904
Cisco Asr 9910
Cisco Asr 9912
and 23 more
CVE-2019-16021
Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a de...
Cisco IOS XR=6.6.1
Cisco ASR 9000
Cisco Asr 9010
Cisco Asr 9904
Cisco Asr 9910
Cisco Asr 9912
and 23 more
CVE-2019-16019
Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a de...
Cisco IOS XR=6.6.1
Cisco ASR 9000
Cisco Asr 9010
Cisco Asr 9904
Cisco Asr 9910
Cisco Asr 9912
and 23 more
CVE-2020-3473
A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local CLI shell user to elevate privileges and gain full administrative contr...
Cisco IOS XR>=5.0.0<7.0.12
Cisco IOS XR>=7.1.0<7.2.1
Cisco 8201
Cisco 8202
Cisco 8808
Cisco 8812
and 18 more
CVE-2020-3530
A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to execute that command, even though administrative privileges...
Cisco IOS XR<7.1.2
Cisco Asr 9000v
Cisco Asr 9001
Cisco Asr 9006
Cisco Asr 9010
Cisco Asr 9901
and 17 more
cisco-sa-iosxr-cli-privescl-sDVEmhqv
Cisco IOS XR Authenticated User Privilege Escalation Vulnerability
Cisco IOS XR=7.0.2<NCS5500=7.0.2<ASR9K-X64
CVE-2020-3566
Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability
Cisco IOS XR=6.4.2
Cisco Asr 9001
Cisco Asr 9006
Cisco Asr 9010
Cisco Asr 9901
Cisco Asr 9904
and 5 more
CVE-2020-3449
A vulnerability in the Border Gateway Protocol (BGP) additional paths feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to prevent authorized users from monitoring the B...
Cisco IOS XR<7.1.2
Cisco IOS XR>=7.2.0<7.2.1
Cisco IOS XR>=7.3.0<7.3.1
cisco-sa-bgp-ErKEqAer
Cisco IOS XR Software Additional Paths Denial of Service Vulnerability
Cisco IOS XR=6.5.3<ASR9K
CVE-2020-3364
A vulnerability in the access control list (ACL) functionality of the standby route processor management interface of Cisco IOS XR Software could allow an unauthenticated, remote attacker to reach the...
Cisco IOS XR=6.7.1
Cisco IOS XR=7.0.2
Cisco IOS XR=7.0.11
Cisco IOS XR=7.0.12
Cisco IOS XR=7.1.1
Cisco IOS XR=7.1.15
CVE-2020-3217
A vulnerability in the Topology Discovery Service of Cisco One Platform Kit (onePK) in Cisco IOS Software, Cisco IOS XE Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthe...
Cisco IOS=12.2\(6\)i1
Cisco IOS=12.4\(25e\)jao7
Cisco IOS=15.0\(2\)sg11a
Cisco IOS=15.1\(3\)svr1
Cisco IOS=15.2\(1\)sy
Cisco IOS=15.2\(1\)sy0a
and 639 more
CVE-2020-3190
A vulnerability in the IPsec packet processor of Cisco IOS XR Software could allow an unauthenticated remote attacker to cause a denial of service (DoS) condition for IPsec sessions to an affected dev...
Cisco IOS XR<6.4.3
Cisco IOS XR>=6.6.0<6.6.3
Cisco IOS XR>=7.0.0<7.0.2
Cisco IOS XR>=7.1.0<7.1.1
CVE-2020-3120
A vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a rel...
Cisco Firepower Extensible Operating System<=2.3.1.173
Cisco Firepower Extensible Operating System>=2.6<2.6.1.187
Cisco Firepower Extensible Operating System>=2.7<2.7.1.106
Cisco FXOS=2.4
Cisco Firepower 4110
Cisco Firepower 4115
and 159 more
CVE-2020-3118
Cisco IOS XR Software Discovery Protocol Format String Vulnerability
Cisco IOS XR
Cisco IOS XR>=6.6.0<6.6.12
Cisco IOS XR>=7.0.0<7.0.2
Cisco IOS XR=6.5.3
Cisco Asr 9000v
Cisco Asr 9001
and 38 more
CVE-2019-16027
A vulnerability in the implementation of the Intermediate System&ndash;to&ndash;Intermediate System (IS&ndash;IS) routing protocol functionality in Cisco IOS XR Software could allow an authenticated, ...
Cisco IOS XR=4.3.2
Cisco Xr 12404
Cisco Xr 12406
Cisco Xr 12410
Cisco Xr 12416
Cisco IOS XR=5.2.5
and 42 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203