Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ios_xr
(Cisco)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 171 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-02-05 | CVE-2020-3120 | A vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to a missing check when the affected software processes Cisco Discovery Protocol messages. An attacker could exploit this vulnerability by sending a malicious Cisco Discovery Protocol packet to... | Firepower_extensible_operating_system, Fxos, Ios_xr, Nx\-Os, Ucs_manager | 6.5 | ||
| 2020-03-04 | CVE-2020-3190 | A vulnerability in the IPsec packet processor of Cisco IOS XR Software could allow an unauthenticated remote attacker to cause a denial of service (DoS) condition for IPsec sessions to an affected device. The vulnerability is due to improper handling of packets by the IPsec packet processor. An attacker could exploit this vulnerability by sending malicious ICMP error messages to an affected device that get punted to the IPsec packet processor. A successful exploit could allow the attacker to... | Ios_xr | 5.8 | ||
| 2020-06-03 | CVE-2020-3217 | A vulnerability in the Topology Discovery Service of Cisco One Platform Kit (onePK) in Cisco IOS Software, Cisco IOS XE Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient length restrictions when the onePK Topology Discovery Service parses Cisco Discovery Protocol messages. An attacker could exploit... | Ios, Ios_xe, Ios_xr, Nx\-Os | 8.8 | ||
| 2020-06-18 | CVE-2020-3364 | A vulnerability in the access control list (ACL) functionality of the standby route processor management interface of Cisco IOS XR Software could allow an unauthenticated, remote attacker to reach the configured IP addresses on the standby route processor management Gigabit Ethernet Management interface. The vulnerability is due to a logic error that was introduced in the Cisco IOS XR Software, which prevents the ACL from working when applied against the standby route processor management... | Ios_xr | 5.3 | ||
| 2020-08-17 | CVE-2020-3449 | A vulnerability in the Border Gateway Protocol (BGP) additional paths feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to prevent authorized users from monitoring the BGP status and cause the BGP process to stop processing new updates, resulting in a denial of service (DOS) condition. The vulnerability is due to an incorrect calculation of lexicographical order when displaying additional path information within Cisco IOS XR Software, which causes an infinite... | Ios_xr | 4.3 | ||
| 2020-09-04 | CVE-2020-3473 | A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local CLI shell user to elevate privileges and gain full administrative control of the device. The vulnerability is due to incorrect mapping of a command to task groups within the source code. An attacker could exploit this vulnerability by first authenticating to the local CLI shell on the device and using the CLI command to bypass the task group–based checks. A... | Ios_xr | 7.8 | ||
| 2020-09-04 | CVE-2020-3530 | A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to execute that command, even though administrative privileges should be required. The attacker must have valid credentials on the affected device. The vulnerability is due to incorrect mapping in the source code of task group assignments for a specific command. An attacker could exploit this vulnerability by issuing the command, which they should not be... | Ios_xr | 8.4 | ||
| 2020-11-06 | CVE-2020-3284 | A vulnerability in the enhanced Preboot eXecution Environment (PXE) boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BIOS and runs over the management interface of hardware platforms that are running Cisco IOS XR Software only. The vulnerability exists because internal commands that are issued when the PXE network boot process is loading a... | A99\-Rp2\-Se_firmware, A99\-Rp2\-Tr_firmware, A99\-Rp3\-Se_firmware, A99\-Rp3\-Tr_firmware, A99\-Rsp\-Se_firmware, A99\-Rsp\-Tr_firmware, A9k\-Rsp5\-Se_firmware, A9k\-Rsp5\-Tr_firmware, A9k\-Rsp880\-Lt\-Se_firmware, A9k\-Rsp880\-Lt\-Tr_firmware, A9k\-Rsp880\-Se_firmware, A9k\-Rsp880\-Tr_firmware, Asr\-9901\-Rp_firmware, Ios_xr, N540\-12z20g\-Sys\-A\/d_firmware, N540\-24z8q2c\-M_firmware, N540\-28z4c\-Sys\-A\/d_firmware, N540\-Acc\-Sys_firmware, N540x\-12z16g\-Sys\-A\/d_firmware, N540x\-16z4g8q2c\-A\/d_firmware, N560\-4\-Sys_firmware, N560\-7\-Sys_firmware, Nc55\-Rp\-E_firmware, Nc55\-Rp_firmware, Ncs1001_firmware, Ncs1002_firmware, Ncs1004_firmware, Ncs5001_firmware, Ncs5002_firmware, Ncs5011_firmware, Ncs55\-A1\-48q6h_firmware, Ncs\-5501\-Se_firmware, Ncs\-5501_firmware, Ncs\-5502\-Se_firmware, Ncs\-5502_firmware, Ncs\-55a1\-24h_firmware, Ncs\-55a1\-24q6h\-S_firmware, Ncs\-55a1\-36h\-S_firmware, Ncs\-55a1\-36h\-Se\-S_firmware, Ncs\-55a2\-Mod\-Hd\-S_firmware, Ncs\-55a2\-Mod\-Hx\-S_firmware, Ncs\-55a2\-Mod\-S_firmware, Ncs\-55a2\-Mod\-Se\-H\-S_firmware, Ncs\-55a2\-Mod\-Se\-S_firmware | 9.8 | ||
| 2020-11-12 | CVE-2020-26070 | A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper resource allocation when an affected device processes network traffic in software switching mode (punted). An attacker could exploit this vulnerability by sending specific streams of Layer 2 or Layer 3... | Ios_xr | 8.6 | ||
| 2021-02-04 | CVE-2021-1128 | A vulnerability in the CLI parser of Cisco IOS XR Software could allow an authenticated, local attacker to view more information than their privileges allow. The vulnerability is due to insufficient application of restrictions during the execution of a specific command. An attacker could exploit this vulnerability by using a specific command at the command line. A successful exploit could allow the attacker to obtain sensitive information within the configuration that otherwise might not... | Ios_xr | 5.5 |