Vulnerabilities > Cisco > IOS XR > 6.0.2

DATE CVE VULNERABILITY TITLE RISK
2018-10-05 CVE-2018-15428 Improper Input Validation vulnerability in Cisco IOS XR
A vulnerability in the implementation of Border Gateway Protocol (BGP) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.
network
high complexity
cisco CWE-20
6.8
6.8
2018-08-15 CVE-2018-0418 Improper Input Validation vulnerability in Cisco IOS XR
A vulnerability in the Local Packet Transport Services (LPTS) feature set of Cisco ASR 9000 Series Aggregation Services Router Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-20
8.6
8.6
2017-07-04 CVE-2017-6719 Improper Input Validation vulnerability in Cisco IOS XR 6.0.2/6.0.2.01
A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary commands on the host operating system with root privileges, aka Command Injection.
local
low complexity
cisco CWE-20
6.7
6.7
2017-07-04 CVE-2017-6718 Improper Input Validation vulnerability in Cisco IOS XR 6.0.2/6.0.2.01
A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to elevate privileges to the root level.
local
low complexity
cisco CWE-20
6.7
6.7