Vulnerabilities > Cisco > IOS XE > 3.10s

DATE CVE VULNERABILITY TITLE RISK
2017-03-22 CVE-2017-3856 Resource Exhaustion vulnerability in Cisco IOS XE
A vulnerability in the web user interface of Cisco IOS XE 3.1 through 3.17 could allow an unauthenticated, remote attacker to cause an affected device to reload.
network
low complexity
cisco CWE-400
7.8
7.8
2014-09-25 CVE-2014-3356 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cisco IOS XE
The metadata flow feature in Cisco IOS 15.1 through 15.3 and IOS XE 3.3.xXO before 3.3.1XO, 3.6.xS and 3.7.xS before 3.7.6S, and 3.8.xS, 3.9.xS, and 3.10.xS before 3.10.1S allows remote attackers to cause a denial of service (device reload) via malformed RSVP packets, aka Bug ID CSCue22753.
network
low complexity
cisco CWE-119
7.8
7.8
2014-09-25 CVE-2014-3355 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cisco IOS XE
The metadata flow feature in Cisco IOS 15.1 through 15.3 and IOS XE 3.3.xXO before 3.3.1XO, 3.6.xS and 3.7.xS before 3.7.6S, and 3.8.xS, 3.9.xS, and 3.10.xS before 3.10.1S allows remote attackers to cause a denial of service (device reload) via malformed RSVP packets, aka Bug ID CSCug75942.
network
low complexity
cisco CWE-119
7.8
7.8