Shodan
Vulnerabilities
Vulnerable Software
Cisco:  >> Ios Xr  >> 3.2.4  Security Vulnerabilities
CVE-2014-3335
Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of packets with multicast destination MAC addresses, which allows remote attackers to cause a denial of service (chip and card hangs) via a crafted packet, aka Bug ID CSCup77750.
CVSS Score
4.6
EPSS Score
0.007
Published
2014-08-26
CVE-2014-3322
Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of IP packets, which allows remote attackers to cause a denial of service (chip and card hangs) via malformed (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCuo68417.
CVSS Score
6.1
EPSS Score
0.007
Published
2014-07-24
CVE-2014-3321
Cisco IOS XR 4.3.4 and earlier on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote attackers to cause a denial of service (chip and card hangs) via a series of crafted MPLS packets, aka Bug ID CSCuo91149.
CVSS Score
5.7
EPSS Score
0.003
Published
2014-07-18
CVE-2014-3308
Cisco IOS XR on Trident line cards in ASR 9000 devices lacks a static punt policer, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted packets, aka Bug ID CSCun83985.
CVSS Score
6.4
EPSS Score
0.014
Published
2014-07-07
CVE-2014-3270
The DHCPv6 implementation in Cisco IOS XR allows remote attackers to cause a denial of service (process hang) via a malformed packet, aka Bug ID CSCul80924.
CVSS Score
5.0
EPSS Score
0.007
Published
2014-05-20
CVE-2014-3271
The DHCPv6 implementation in Cisco IOS XR allows remote attackers to cause a denial of service (device crash) via a malformed packet, aka Bug IDs CSCum85558, CSCum20949, CSCul61849, and CSCul71149.
CVSS Score
5.0
EPSS Score
0.007
Published
2014-05-20
CVE-2014-2144
Cisco IOS XR does not properly throttle ICMPv6 redirect packets, which allows remote attackers to cause a denial of service (IPv4 and IPv6 transit outage) via crafted redirect messages, aka Bug ID CSCum14266.
CVSS Score
6.1
EPSS Score
0.001
Published
2014-04-05
CVE-2013-6700
The SNMP module in Cisco IOS XR allows remote attackers to cause a denial of service (process reload) via a request for an unspecified MIB, aka Bug ID CSCuh43144.
CVSS Score
5.0
EPSS Score
0.007
Published
2013-11-29
CVE-2013-5498
The PPTP-ALG component in CRS Carrier Grade Services Engine (CGSE) and ASR 9000 Integrated Service Module (ISM) in Cisco IOS XR allows remote attackers to cause a denial of service (module reset) via crafted packet streams, aka Bug ID CSCue91963.
CVSS Score
5.0
EPSS Score
0.013
Published
2013-09-27
CVE-2013-3470
The RIP process in Cisco IOS XR allows remote attackers to cause a denial of service (process crash) via a crafted version-2 RIP packet, aka Bug ID CSCue46731.
CVSS Score
5.0
EPSS Score
0.016
Published
2013-08-30


Products
Pricing
Contact Us

Shodan ® - All rights reserved