Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ios
(Cisco)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 609 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2016-09-18 | CVE-2016-6404 | Cross-site scripting (XSS) vulnerability in the web framework in Cisco IOx Local Manager in IOS 15.5(2)T and IOS XE allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuy19854. | Ios | 6.1 | ||
| 2016-09-18 | CVE-2016-6403 | The Data in Motion (DMo) application in Cisco IOS 15.6(1)T and IOS XE, when the IOx feature set is enabled, allows remote attackers to cause a denial of service via a crafted packet, aka Bug IDs CSCuy82904, CSCuy82909, and CSCuy82912. | Ios | 5.9 | ||
| 2016-09-12 | CVE-2016-6398 | The PPTP server in Cisco IOS 15.5(3)M does not properly initialize packet buffers, which allows remote attackers to obtain sensitive information from earlier network communication by reading packet data, aka Bug ID CSCvb16274. | Ios | 5.3 | ||
| 2016-10-05 | CVE-2016-6392 | Cisco IOS 12.2 and 15.0 through 15.3 and IOS XE 3.1 through 3.9 allow remote attackers to cause a denial of service (device restart) via a crafted IPv4 Multicast Source Discovery Protocol (MSDP) Source-Active (SA) message, aka Bug ID CSCud36767. | Ios, Ios_xe | 7.5 | ||
| 2016-10-05 | CVE-2016-6391 | Cisco IOS 12.2 and 15.0 through 15.3 allows remote attackers to cause a denial of service (traffic-processing outage) via a crafted series of Common Industrial Protocol (CIP) requests, aka Bug ID CSCur69036. | Ios | 7.5 | ||
| 2016-10-05 | CVE-2016-6385 | Memory leak in the Smart Install client implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.2 through 3.8 allows remote attackers to cause a denial of service (memory consumption) via crafted image-list parameters, aka Bug ID CSCuy82367. | Ios, Ios_xe | 7.5 | ||
| 2016-10-05 | CVE-2016-6382 | Cisco IOS 15.2 through 15.6 and IOS XE 3.6 through 3.17 and 16.1 allow remote attackers to cause a denial of service (device restart) via a malformed IPv6 Protocol Independent Multicast (PIM) register packet, aka Bug ID CSCuy16399. | Ios, Ios_xe | 7.5 | ||
| 2016-10-05 | CVE-2016-6381 | Cisco IOS 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.18 and 16.1 allow remote attackers to cause a denial of service (memory consumption or device reload) via fragmented IKEv1 packets, aka Bug ID CSCuy47382. | Ios, Ios_xe, Ios_xe_16\.1, Ios_xe_3\.3sg, Ios_xe_3\.3xo, Ios_xe_3\.4sg | 7.5 | ||
| 2016-10-05 | CVE-2016-6380 | The DNS forwarder in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.15 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (data corruption or device reload) via a crafted DNS response, aka Bug ID CSCup90532. | Ios, Ios_xe, Ios_xe_3\.1sg, Ios_xe_3\.2ja, Ios_xe_3\.2sg, Ios_xe_3\.2xo, Ios_xe_3\.3sg, Ios_xe_3\.3sq, Ios_xe_3\.3xo, Ios_xe_3\.4sg, Ios_xe_3\.4sq, Ios_xe_3\.5sq, Ios_xe_3\.8ex | 8.1 | ||
| 2016-10-05 | CVE-2016-6379 | Cisco IOS 12.2 and IOS XE 3.14 through 3.16 and 16.1 allow remote attackers to cause a denial of service (device reload) via crafted IP Detail Record (IPDR) packets, aka Bug ID CSCuu35089. | Ios, Ios_xe | 7.5 |