Vulnerabilities > Cisco > IOS XR
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-04-05 | CVE-2014-2144 | Improper Input Validation vulnerability in Cisco IOS XR Cisco IOS XR does not properly throttle ICMPv6 redirect packets, which allows remote attackers to cause a denial of service (IPv4 and IPv6 transit outage) via crafted redirect messages, aka Bug ID CSCum14266. | 6.1 |
| 2013-11-29 | CVE-2013-6700 | Improper Input Validation vulnerability in Cisco IOS XR The SNMP module in Cisco IOS XR allows remote attackers to cause a denial of service (process reload) via a request for an unspecified MIB, aka Bug ID CSCuh43144. | 5.0 |
| 2013-11-08 | CVE-2013-5565 | Buffer Errors vulnerability in Cisco IOS XR 5.1.0 The OSPFv3 functionality in Cisco IOS XR 5.1 allows remote attackers to cause a denial of service (process crash) via a malformed LSA Type-1 packet, aka Bug ID CSCuj82176. | 4.3 |
| 2013-10-25 | CVE-2013-5549 | Unspecified vulnerability in Cisco IOS XR Cisco IOS XR 3.8.1 through 4.2.0 does not properly process fragmented packets within the RP-A, RP-B, PRP, and DRP-B route-processor components, which allows remote attackers to cause a denial of service (transmission outage) via (1) IPv4 or (2) IPv6 traffic, aka Bug ID CSCuh30380. network cisco | 7.1 |
| 2013-10-02 | CVE-2013-5503 | Resource Management Errors vulnerability in Cisco IOS XR 4.3.1 The UDP process in Cisco IOS XR 4.3.1 does not free packet memory upon detecting full packet queues, which allows remote attackers to cause a denial of service (memory consumption) via UDP packets to listening ports, aka Bug ID CSCue69413. | 7.8 |
| 2013-09-27 | CVE-2013-5498 | Improper Input Validation vulnerability in Cisco IOS XR The PPTP-ALG component in CRS Carrier Grade Services Engine (CGSE) and ASR 9000 Integrated Service Module (ISM) in Cisco IOS XR allows remote attackers to cause a denial of service (module reset) via crafted packet streams, aka Bug ID CSCue91963. | 5.0 |
| 2013-08-30 | CVE-2013-3470 | Improper Input Validation vulnerability in Cisco IOS XR The RIP process in Cisco IOS XR allows remote attackers to cause a denial of service (process crash) via a crafted version-2 RIP packet, aka Bug ID CSCue46731. | 5.0 |
| 2013-08-13 | CVE-2013-3464 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cisco IOS XR Cisco IOS XR allows local users to cause a denial of service (Silicon Packet Processor memory corruption, improper mutex handling, and device reload) by starting an outbound flood of large ICMP Echo Request packets and stopping this with a CTRL-C sequence, aka Bug ID CSCui60347. | 4.6 |
| 2013-05-23 | CVE-2013-1204 | Resource Management Errors vulnerability in Cisco IOS XR Memory leak in the SNMP process in Cisco IOS XR allows remote attackers to cause a denial of service (memory consumption or process reload) by sending many port-162 UDP packets, aka Bug ID CSCug80345. | 5.0 |
| 2013-05-03 | CVE-2013-1234 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cisco IOS XR The SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (process restart) via crafted SNMP packets, aka Bug ID CSCue69472. | 4.0 |