Approved changes feed: RSS · Atom

cpe:2.3:o:cisco:ios:15.3\(3\)jn2:*:*:*:*:*:*:*

part: o version: 15.3(3)jn2 update: *

VendorCisco (e1b3baff-aaf9-56a6-a68a-41e28ce616a5)
ProductIos (335bd590-b988-5d63-a96b-6de17994d578)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-3225 vulnerable 2026-06-08 05:25:53.915414 Cisco IOS and IOS XE Software Common Industrial Protocol Denial of Service Vulnerabilities
HIGH (8.6)
Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabilities are due to insufficient input processing of CIP traffic. An attacker could exploit these vulnerabilities by sending crafted CIP traffic to be processed by an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.
Published: 2020-06-03T17:42:04.855Z
Updated: 2024-11-15T17:14:57.556Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-3200 vulnerable 2026-06-08 05:25:51.996934 Cisco IOS and IOS XE Software Secure Shell Denial of Service Vulnerability
HIGH (7.7)
A vulnerability in the Secure Shell (SSH) server code of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. The vulnerability is due to an internal state not being represented correctly in the SSH state machine, which leads to an unexpected behavior. An attacker could exploit this vulnerability by creating an SSH connection to an affected device and using a specific traffic pattern that causes an error condition within that connection. A successful exploit could allow an attacker to cause the device to reload, resulting in a denial of service (DoS) condition.
Published: 2020-06-03T17:45:23.487Z
Updated: 2024-11-15T17:12:41.085Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-1762 vulnerable 2026-06-08 05:13:29.120415 Cisco IOS and IOS XE Software Information Disclosure Vulnerability
MEDIUM (4.4)
A vulnerability in the Secure Storage feature of Cisco IOS and IOS XE Software could allow an authenticated, local attacker to access sensitive system information on an affected device. The vulnerability is due to improper memory operations performed at encryption time, when affected software handles configuration updates. An attacker could exploit this vulnerability by retrieving the contents of specific memory locations of an affected device. A successful exploit could result in the disclosure of keying materials that are part of the device configuration, which can be used to recover critical system information.
Published: 2019-03-28T00:30:15.849Z
Updated: 2024-09-16T20:43:39.659Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-1761 vulnerable 2026-06-08 05:13:29.066563 Cisco IOS and IOS XE Software Hot Standby Router Protocol Information Leak Vulnerability
MEDIUM (4.3)
A vulnerability in the Hot Standby Router Protocol (HSRP) subsystem of Cisco IOS and IOS XE Software could allow an unauthenticated, adjacent attacker to receive potentially sensitive information from an affected device. The vulnerability is due to insufficient memory initialization. An attacker could exploit this vulnerability by receiving HSRPv2 traffic from an adjacent HSRP member. A successful exploit could allow the attacker to receive potentially sensitive information from the adjacent device.
Published: 2019-03-28T00:25:15.422Z
Updated: 2024-11-21T19:41:22.576Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-1757 vulnerable 2026-06-08 05:13:28.475499 Cisco IOS and IOS XE Software Smart Call Home Certificate Validation Vulnerability
A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data using an invalid certificate. The vulnerability is due to insufficient certificate validation by the affected software. An attacker could exploit this vulnerability by supplying a crafted certificate to an affected device. A successful exploit could allow the attacker to conduct man-in-the-middle attacks to decrypt confidential information on user connections to the affected software.
Published: 2019-03-28T00:20:21.311Z
Updated: 2024-11-15T15:15:52.387Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2016-1409 vulnerable 2026-06-08 05:07:31.027097 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.