Vulnerabilities > Cisco > ASR 5000 Series Software
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-08-22 | CVE-2015-6256 | Improper Input Validation vulnerability in Cisco ASR 5000 Series Software 19.0.M0.60828 Cisco ASR 5000 devices with software 19.0.M0.60828 allow remote attackers to cause a denial of service (OSPF process restart) via crafted length fields in headers of OSPF packets, aka Bug ID CSCuv62820. | 5.0 |
2015-07-16 | CVE-2015-4275 | Resource Management Errors vulnerability in Cisco ASR 5000 Series Software 18.0.0.59167/18.0.0.59211 The Packet Data Network Gateway (aka PGW) component on Cisco ASR 5000 devices with software 18.0.0.59167 and 18.0.0.59211 allows remote attackers to cause a denial of service via a malformed header in a GTPv2 packet, aka Bug ID CSCut11534. | 5.0 |
2015-07-15 | CVE-2015-4273 | Improper Input Validation vulnerability in Cisco ASR 5000 Series Software 15.0(912)/15.0(935)/15.0(938) The Packet Data Network Gateway (aka PGW) component on Cisco ASR 5000 devices with software 15.0(912), 15.0(935), and 15.0(938) allows remote attackers to cause a denial of service (Session Manager outage) via malformed fields in an IP packet, aka Bug ID CSCut38476. | 5.0 |
2015-07-10 | CVE-2015-4244 | OS Command Injection vulnerability in Cisco ASR 5000 Series Software 14.0 The boot implementation on Cisco ASR 5000 and 5500 devices with software 14.0 allows local users to execute arbitrary Linux commands by leveraging administrative privileges for storage of these commands in a Compact Flash (CF) file, aka Bug ID CSCuu75278. | 7.2 |
2015-06-20 | CVE-2015-4201 | Improper Input Validation vulnerability in Cisco ASR 5000 Series Software 17.2.0.59184/18.0.L059219 The Gateway General Packet Radio Service Support Node (GGSN) component on Cisco ASR 5000 devices with software 17.2.0.59184 and 18.0.L0.59219 allows remote attackers to cause a denial of service (Session Manager restart) via an invalid TCP/IP header, aka Bug ID CSCut68058. | 5.0 |
2015-02-18 | CVE-2015-0617 | Resource Management Errors vulnerability in Cisco ASR 5000 Series Software Cisco ASR 5500 System Architecture Evolution (SAE) Gateway devices allow remote attackers to cause a denial of service (CPU consumption and SNMP outage) via malformed SNMP packets, aka Bug ID CSCur13393. | 5.0 |
2014-08-20 | CVE-2014-3331 | Improper Input Validation vulnerability in Cisco ASR 5000 Series Software The Session Manager component in Packet Data Network Gateway (aka PGW) in Cisco ASR 5000 Series Software 11.0, 12.0, 12.1, 12.2, 14.0, 15.0, 16.x through 16.1.2, and 17.0 allows remote attackers to cause a denial of service (process crash) via a crafted TCP packet, aka Bug ID CSCuo21914. | 4.3 |
2014-01-22 | CVE-2014-0669 | Permissions, Privileges, and Access Controls vulnerability in Cisco ASR 5000 Series Software The Wireless Session Protocol (WSP) feature in the Gateway GPRS Support Node (GGSN) component on Cisco ASR 5000 series devices allows remote attackers to bypass intended Top-Up payment restrictions via unspecified WSP packets, aka Bug ID CSCuh28371. | 5.0 |