Vulnerabilities > Cisco > IOS > Medium

DATE CVE VULNERABILITY TITLE RISK
2016-09-12 CVE-2016-6398 Information Exposure vulnerability in Cisco IOS 15.5(3)M
The PPTP server in Cisco IOS 15.5(3)M does not properly initialize packet buffers, which allows remote attackers to obtain sensitive information from earlier network communication by reading packet data, aka Bug ID CSCvb16274.
network
low complexity
cisco CWE-200
5.3
5.3
2016-07-17 CVE-2016-1459 Resource Management Errors vulnerability in Cisco IOS and IOS XE
Cisco IOS 12.4 and 15.0 through 15.5 and IOS XE 3.13 through 3.17 allow remote authenticated users to cause a denial of service (device reload) via crafted attributes in a BGP message, aka Bug ID CSCuz21061.
network
high complexity
cisco CWE-399
5.3
5.3
2016-07-03 CVE-2016-1425 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Cisco IOS
Cisco IOS 15.0(2)SG5, 15.1(2)SG3, 15.2(1)E, 15.3(3)S, and 15.4(1.13)S allows remote attackers to cause a denial of service (device crash) via a crafted LLDP packet, aka Bug ID CSCun66735.
low complexity
cisco CWE-119
6.5
6.5
2016-06-19 CVE-2016-1424 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Cisco IOS 15.2(1)T1.11/15.2(2)Tst
Cisco IOS 15.2(1)T1.11 and 15.2(2)TST allows remote attackers to cause a denial of service (device crash) via a crafted LLDP packet, aka Bug ID CSCun63132.
low complexity
cisco CWE-119
6.5
6.5
2016-04-14 CVE-2016-1378 Information Exposure vulnerability in Cisco IOS
Cisco IOS before 15.2(2)E1 on Catalyst switches allows remote attackers to obtain potentially sensitive software-version information via a request to the Network Mobility Services Protocol (NMSP) port, aka Bug ID CSCum62591.
network
low complexity
cisco CWE-200
5.3
5.3
2016-02-17 CVE-2016-1333 Resource Management Errors vulnerability in Cisco IOS 15.5(3)M/15.6(1)T0A
Cisco IOS 15.5(3)M and 15.6(1)T0a on Cisco 1000 Connected Grid routers allows remote authenticated users to cause a denial of service (device reload) via an SNMP request for unspecified BRIDGE MIB OIDs, aka Bug ID CSCux89878.
network
low complexity
cisco CWE-399
6.5
6.5
2004-12-31 CVE-2004-1464 Unspecified vulnerability in Cisco IOS
Cisco IOS 12.2(15) and earlier allows remote attackers to cause a denial of service (refused VTY (virtual terminal) connections), via a crafted TCP connection to the Telnet or reverse Telnet port.
network
high complexity
cisco
5.9
5.9