Shodan
Vulnerabilities
Vulnerable Software
Cisco:  >> Ios Xr  >> 3.4.3  Security Vulnerabilities
CVE-2013-6700
The SNMP module in Cisco IOS XR allows remote attackers to cause a denial of service (process reload) via a request for an unspecified MIB, aka Bug ID CSCuh43144.
CVSS Score
5.0
EPSS Score
0.005
Published
2013-11-29
CVE-2013-5498
The PPTP-ALG component in CRS Carrier Grade Services Engine (CGSE) and ASR 9000 Integrated Service Module (ISM) in Cisco IOS XR allows remote attackers to cause a denial of service (module reset) via crafted packet streams, aka Bug ID CSCue91963.
CVSS Score
5.0
EPSS Score
0.009
Published
2013-09-27
CVE-2013-3470
The RIP process in Cisco IOS XR allows remote attackers to cause a denial of service (process crash) via a crafted version-2 RIP packet, aka Bug ID CSCue46731.
CVSS Score
5.0
EPSS Score
0.01
Published
2013-08-30
CVE-2013-1204
Memory leak in the SNMP process in Cisco IOS XR allows remote attackers to cause a denial of service (memory consumption or process reload) by sending many port-162 UDP packets, aka Bug ID CSCug80345.
CVSS Score
5.0
EPSS Score
0.005
Published
2013-05-23
CVE-2013-1234
The SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (process restart) via crafted SNMP packets, aka Bug ID CSCue69472.
CVSS Score
4.0
EPSS Score
0.004
Published
2013-05-03
CVE-2013-1216
Memory leak in the SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (memory consumption and process restart) via crafted SNMP packets, aka Bug ID CSCue31546.
CVSS Score
4.0
EPSS Score
0.004
Published
2013-04-29
CVE-2013-1162
The traffic engineering (TE) processing subsystem in Cisco IOS XR allows remote attackers to cause a denial of service (process restart) via crafted TE packets, aka Bug ID CSCue04000.
CVSS Score
5.0
EPSS Score
0.005
Published
2013-03-26
CVE-2012-2488
Cisco IOS XR before 4.2.1 on ASR 9000 series devices and CRS series devices allows remote attackers to cause a denial of service (packet transmission outage) via a crafted packet, aka Bug IDs CSCty94537 and CSCtz62593.
CVSS Score
7.8
EPSS Score
0.004
Published
2012-05-31
CVE-2010-3035
Known exploited
Cisco IOS XR 3.4.0 through 3.9.1, when BGP is enabled, does not properly handle unrecognized transitive attributes, which allows remote attackers to cause a denial of service (peering reset) via a crafted prefix announcement, as demonstrated in the wild in August 2010 with attribute type code 99, aka Bug ID CSCti62211.
CVSS Score
7.5
EPSS Score
0.058
Published
2010-08-30
CVE-2010-0576
Unspecified vulnerability in Cisco IOS 12.0 through 12.4, IOS XE 2.1.x through 2.3.x before 2.3.2, and IOS XR 3.2.x through 3.4.3, when Multiprotocol Label Switching (MPLS) and Label Distribution Protocol (LDP) are enabled, allows remote attackers to cause a denial of service (device reload or process restart) via a crafted LDP packet, aka Bug IDs CSCsz45567 and CSCsj25893.
CVSS Score
7.8
EPSS Score
0.017
Published
2010-03-25


Products
Pricing
Contact Us

Shodan ® - All rights reserved