Approved changes feed: RSS · Atom

cpe:2.3:o:cisco:ios:-:*:*:*:*:*:*:*

part: o version: - update: *

VendorCisco (e1b3baff-aaf9-56a6-a68a-41e28ce616a5)
ProductIos (335bd590-b988-5d63-a96b-6de17994d578)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-3479 vulnerable 2026-06-08 05:25:55.494669 Cisco IOS and IOS XE Software MP-BGP EVPN Denial of Service Vulnerability
MEDIUM (6.1)
A vulnerability in the implementation of Multiprotocol Border Gateway Protocol (MP-BGP) for the Layer 2 VPN (L2VPN) Ethernet VPN (EVPN) address family in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to incorrect processing of Border Gateway Protocol (BGP) update messages that contain crafted EVPN attributes. An attacker could exploit this vulnerability by sending BGP update messages with specific, malformed attributes to an affected device. A successful exploit could allow the attacker to cause an affected device to crash, resulting in a DoS condition.
Published: 2020-09-24T17:52:44.044Z
Updated: 2024-11-13T17:58:10.602Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-3475 vulnerable 2026-06-08 05:25:55.465186 Cisco IOS XE Software Web Management Framework Vulnerabilities
MEDIUM (4.3)
Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to gain unauthorized read access to sensitive data or cause the web management software to hang or crash, resulting in a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.
Published: 2020-09-24T17:52:58.367Z
Updated: 2024-11-13T17:57:42.435Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-3426 vulnerable 2026-06-08 05:25:55.294235 Cisco IOS Software for Cisco Industrial Routers Virtual-LPWA Unauthorized Access Vulnerability
HIGH (7.5)
A vulnerability in the implementation of the Low Power, Wide Area (LPWA) subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data or cause a denial of service (DoS) condition. The vulnerability is due to a lack of input and validation checking mechanisms for virtual-LPWA (VLPWA) protocol modem messages. An attacker could exploit this vulnerability by supplying crafted packets to an affected device. A successful exploit could allow the attacker to gain unauthorized read access to sensitive data or cause the VLPWA interface of the affected device to shut down, resulting in DoS condition.
Published: 2020-09-24T18:01:14.219Z
Updated: 2024-11-13T17:56:53.388Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-0172 vulnerable 2026-06-08 05:10:21.620049 Details available
A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability exists because the affected software performs incomplete input validation of option 82 information that it receives in DHCP Version 4 (DHCPv4) packets from DHCP relay agents. An attacker could exploit this vulnerability by sending a crafted DHCPv4 packet to an affected device. A successful exploit could allow the attacker to cause a heap overflow condition on the affected device, which will cause the device to reload and result in a DoS condition. Cisco Bug IDs: CSCvg62730.
Published: 2018-03-28T22:00:00.000Z
Updated: 2026-01-12T21:59:22.400Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-0154 vulnerable 2026-06-08 05:10:21.222357 Details available
A vulnerability in the crypto engine of the Cisco Integrated Services Module for VPN (ISM-VPN) running Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient handling of VPN traffic by the affected device. An attacker could exploit this vulnerability by sending crafted VPN traffic to an affected device. A successful exploit could allow the attacker to cause the affected device to hang or crash, resulting in a DoS condition. Cisco Bug IDs: CSCvd39267.
Published: 2018-03-28T22:00:00.000Z
Updated: 2026-01-12T21:51:50.881Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2015-0659 vulnerable 2026-06-08 05:06:22.180923 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2015-0632 vulnerable 2026-06-08 05:06:21.905207 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2015-0606 vulnerable 2026-06-08 05:06:21.843014 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2015-0598 vulnerable 2026-06-08 05:06:21.829259 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2014-7998 vulnerable 2026-06-08 05:06:00.586765 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2014-7997 vulnerable 2026-06-08 05:06:00.570209 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2014-7992 vulnerable 2026-06-08 05:06:00.560121 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2014-3309 vulnerable 2026-06-08 05:05:32.114241 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2014-3299 vulnerable 2026-06-08 05:05:32.100196 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2014-3273 vulnerable 2026-06-08 05:05:32.011536 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2014-2131 vulnerable 2026-06-08 05:05:27.671107 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-6705 vulnerable 2026-06-08 05:05:06.655405 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-6694 vulnerable 2026-06-08 05:05:06.636226 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-5548 vulnerable 2026-06-08 05:04:52.083916 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-5527 vulnerable 2026-06-08 05:04:52.047433 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-5522 vulnerable 2026-06-08 05:04:52.039836 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-5499 vulnerable 2026-06-08 05:04:51.877305 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-5469 vulnerable 2026-06-08 05:04:51.786563 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-3436 vulnerable 2026-06-08 05:04:31.504077 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-1241 vulnerable 2026-06-08 05:03:53.205533 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-1217 vulnerable 2026-06-08 05:03:53.164146 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-1136 vulnerable 2026-06-08 05:03:52.659622 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-1100 vulnerable 2026-06-08 05:03:52.450329 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2008-4609 vulnerable 2026-06-08 04:50:46.251558 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-1999-0524 vulnerable 2026-06-08 04:44:58.056366 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-1999-0293 vulnerable 2026-06-08 04:44:57.996692 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.