Vulnerabilities > Cisco > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-08 | CVE-2020-3544 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Cisco products A vulnerability in the Cisco Discovery Protocol implementation for Cisco Video Surveillance 8000 Series IP Cameras could allow an unauthenticated, adjacent attacker to execute arbitrary code on an affected device or cause the device to reload. | 8.8 |
| 2020-10-08 | CVE-2020-3535 | Uncontrolled Search Path Element vulnerability in Cisco Webex Teams A vulnerability in the loading mechanism of specific DLLs in the Cisco Webex Teams client for Windows could allow an authenticated, local attacker to load a malicious library. | 8.4 |
| 2020-09-24 | CVE-2020-3560 | Resource Exhaustion vulnerability in Cisco products A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device. | 7.8 |
| 2020-09-24 | CVE-2020-3527 | Resource Exhaustion vulnerability in Cisco IOS XE A vulnerability in the Polaris kernel of Cisco Catalyst 9200 Series Switches could allow an unauthenticated, remote attacker to crash the device. | 7.8 |
| 2020-09-24 | CVE-2020-3526 | Improper Input Validation vulnerability in Cisco IOS XE 17.2 A vulnerability in the Common Open Policy Service (COPS) engine of Cisco IOS XE Software on Cisco cBR-8 Converged Broadband Routers could allow an unauthenticated, remote attacker to crash a device. | 7.8 |
| 2020-09-24 | CVE-2020-3511 | Improper Input Validation vulnerability in Cisco IOS XE 15.1(4)M A vulnerability in the ISDN subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. | 7.4 |
| 2020-09-24 | CVE-2020-3510 | Resource Exhaustion vulnerability in Cisco IOS XE 16.12.1/16.12.2/17.1.1 A vulnerability in the Umbrella Connector component of Cisco IOS XE Software for Cisco Catalyst 9200 Series Switches could allow an unauthenticated, remote attacker to trigger a reload, resulting in a denial of service condition on an affected device. | 7.1 |
| 2020-09-24 | CVE-2020-3509 | Information Exposure Through Discrepancy vulnerability in Cisco IOS XE 16.7(1) A vulnerability in the DHCP message handler of Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers could allow an unauthenticated, remote attacker to cause the supervisor to crash, which could result in a denial of service (DoS) condition. | 7.8 |
| 2020-09-24 | CVE-2020-3492 | Improper Input Validation vulnerability in Cisco IOS XE 16.12.1 A vulnerability in the Flexible NetFlow Version 9 packet processor of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers and Cisco AireOS Software for Cisco Wireless LAN Controllers (WLC) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. | 7.8 |
| 2020-09-24 | CVE-2020-3480 | Improper Check for Unusual or Exceptional Conditions vulnerability in Cisco IOS XE Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload or stop forwarding traffic through the firewall. | 8.6 |