Vulnerabilities > Cisco > IOS XR > Low

DATE CVE VULNERABILITY TITLE RISK
2017-06-13 CVE-2017-6666 Local Denial of Service vulnerability in Cisco IOS XR Software
A vulnerability in the forwarding component of Cisco IOS XR Software for Cisco Network Convergence System (NCS) 5500 Series Routers could allow an authenticated, local attacker to cause the router to stop forwarding data traffic across Traffic Engineering (TE) tunnels, resulting in a denial of service (DoS) condition.
local
cisco
1.9
2009-08-21 CVE-2009-1154 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cisco IOS XR
Cisco IOS XR 3.8.1 and earlier allows remote attackers to cause a denial of service (process crash) via a long BGP UPDATE message, as demonstrated by a message with many AS numbers in the AS Path Attribute.
network
low complexity
cisco CWE-119
3.3
2009-08-21 CVE-2009-2056 Permissions, Privileges, and Access Controls vulnerability in Cisco IOS XR
Cisco IOS XR 3.8.1 and earlier allows remote authenticated users to cause a denial of service (process crash) via vectors involving a BGP UPDATE message with many AS numbers prepended to the AS path.
network
low complexity
cisco CWE-264
3.3
2005-08-03 CVE-2005-2451 Unspecified vulnerability in Cisco IOS and IOS XR
Cisco IOS 12.0 through 12.4 and IOS XR before 3.2, with IPv6 enabled, allows remote attackers on a local network segment to cause a denial of service (device reload) and possibly execute arbitrary code via a crafted IPv6 packet.
local
low complexity
cisco
2.1