Approved changes feed: RSS · Atom

cpe:2.3:o:cisco:ios:15.3\(3\)jn:*:*:*:*:*:*:*

part: o version: 15.3(3)jn update: *

VendorCisco (e1b3baff-aaf9-56a6-a68a-41e28ce616a5)
ProductIos (335bd590-b988-5d63-a96b-6de17994d578)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2022-20920 vulnerable 2026-06-08 05:39:57.140098 Cisco IOS and IOS XE Software SSH Denial of Service Vulnerability
HIGH (7.7)
A vulnerability in the SSH implementation of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. This vulnerability is due to improper handling of resources during an exceptional situation. An attacker could exploit this vulnerability by continuously connecting to an affected device and sending specific SSH requests. A successful exploit could allow the attacker to cause the affected device to reload.
Published: 2022-10-10T20:43:15.882Z
Updated: 2026-05-27T12:49:59.670Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-34705 vulnerable 2026-06-08 05:32:15.862008 Cisco IOS and IOS XE Software FXO Interface Destination Pattern Bypass Vulnerability
MEDIUM (5.3)
A vulnerability in the Voice Telephony Service Provider (VTSP) service of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass configured destination patterns and dial arbitrary numbers. This vulnerability is due to insufficient validation of dial strings at Foreign Exchange Office (FXO) interfaces. An attacker could exploit this vulnerability by sending a malformed dial string to an affected device via either the ISDN protocol or SIP. A successful exploit could allow the attacker to conduct toll fraud, resulting in unexpected financial impact to affected customers.
Published: 2021-09-23T02:26:09.005Z
Updated: 2024-09-16T18:33:27.582Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-1392 vulnerable 2026-06-08 05:28:13.988527 Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability
HIGH (7.8)
A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.
Published: 2021-03-24T20:07:19.109Z
Updated: 2024-11-08T23:33:05.994Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-3225 vulnerable 2026-06-08 05:25:53.915374 Cisco IOS and IOS XE Software Common Industrial Protocol Denial of Service Vulnerabilities
HIGH (8.6)
Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabilities are due to insufficient input processing of CIP traffic. An attacker could exploit these vulnerabilities by sending crafted CIP traffic to be processed by an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.
Published: 2020-06-03T17:42:04.855Z
Updated: 2024-11-15T17:14:57.556Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-3200 vulnerable 2026-06-08 05:25:51.995804 Cisco IOS and IOS XE Software Secure Shell Denial of Service Vulnerability
HIGH (7.7)
A vulnerability in the Secure Shell (SSH) server code of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. The vulnerability is due to an internal state not being represented correctly in the SSH state machine, which leads to an unexpected behavior. An attacker could exploit this vulnerability by creating an SSH connection to an affected device and using a specific traffic pattern that causes an error condition within that connection. A successful exploit could allow an attacker to cause the device to reload, resulting in a denial of service (DoS) condition.
Published: 2020-06-03T17:45:23.487Z
Updated: 2024-11-15T17:12:41.085Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-1761 vulnerable 2026-06-08 05:13:29.066485 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2015-0649 vulnerable 2026-06-08 05:06:22.096612 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2015-0648 vulnerable 2026-06-08 05:06:22.094124 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2015-0638 vulnerable 2026-06-08 05:06:21.981649 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2015-0637 vulnerable 2026-06-08 05:06:21.958794 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2015-0636 vulnerable 2026-06-08 05:06:21.957357 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2015-0635 vulnerable 2026-06-08 05:06:21.947005 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.