Ios Xe

ios_xe

Vendor: Cisco • 541 CVEs

CVEs (541)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2016-6380 1Cisco 6Ios Ios XeIos Xe 3.2ja+3 more May 6, 2026 Oct 5, 2016 N/A· v4 8.1 HIGH· v3 8.3 HIGH· v2 The DNS forwarder in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.15 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (data corruption...Show more The DNS forwarder in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.15 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (data corruption or device reload) via a crafted DNS response, aka Bug ID CSCup90532.Show less
CVE-2016-6379 1Cisco 2Ios Ios Xe May 6, 2026 Oct 5, 2016 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Cisco IOS 12.2 and IOS XE 3.14 through 3.16 and 16.1 allow remote attackers to cause a denial of service (device reload) via crafted IP Detail Record (IPDR) packets, aka Bug ID CSCuu35089.
CVE-2016-6378 1Cisco 1Ios Xe May 6, 2026 Oct 5, 2016 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Cisco IOS XE 3.1 through 3.17 and 16.1 through 16.2 allows remote attackers to cause a denial of service (device reload) via crafted ICMP packets that require NAT, aka Bug ID CSCuw85853.
CVE-2016-6392 1Cisco 2Ios Ios Xe May 6, 2026 Oct 5, 2016 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Cisco IOS 12.2 and 15.0 through 15.3 and IOS XE 3.1 through 3.9 allow remote attackers to cause a denial of service (device restart) via a crafted IPv4 Multicast Source Discovery Protocol (MSDP) Source-Active (SA) messag...Show more Cisco IOS 12.2 and 15.0 through 15.3 and IOS XE 3.1 through 3.9 allow remote attackers to cause a denial of service (device restart) via a crafted IPv4 Multicast Source Discovery Protocol (MSDP) Source-Active (SA) message, aka Bug ID CSCud36767.Show less
CVE-2016-6386 1Cisco 6Ios Xe Ios Xe 16.1Ios Xe 3.2ja+3 more May 6, 2026 Oct 5, 2016 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Cisco IOS XE 3.1 through 3.17 and 16.1 on 64-bit platforms allows remote attackers to cause a denial of service (data-structure corruption and device reload) via fragmented IPv4 packets, aka Bug ID CSCux66005.
CVE-2016-6384 1Cisco 2Ios Ios Xe May 6, 2026 Oct 5, 2016 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Cisco IOS 12.2 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.17 and 16.2 allow remote attackers to cause a denial of service (device reload) via crafted fields in an H.323 message, aka Bug ID CSCux04257.
CVE-2016-6382 1Cisco 2Ios Ios Xe May 6, 2026 Oct 5, 2016 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Cisco IOS 15.2 through 15.6 and IOS XE 3.6 through 3.17 and 16.1 allow remote attackers to cause a denial of service (device restart) via a malformed IPv6 Protocol Independent Multicast (PIM) register packet, aka Bug ID...Show more Cisco IOS 15.2 through 15.6 and IOS XE 3.6 through 3.17 and 16.1 allow remote attackers to cause a denial of service (device restart) via a malformed IPv6 Protocol Independent Multicast (PIM) register packet, aka Bug ID CSCuy16399.Show less
CVE-2016-6381 1Cisco 6Ios Ios XeIos Xe 16.1+3 more May 6, 2026 Oct 5, 2016 N/A· v4 7.5 HIGH· v3 7.1 HIGH· v2 Cisco IOS 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.18 and 16.1 allow remote attackers to cause a denial of service (memory consumption or device reload) via fragmented IKEv1 packets, aka Bug ID CSCuy47382.
CVE-2014-2146 1Cisco 2Ios Ios Xe May 6, 2026 Sep 22, 2016 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The Zone-Based Firewall (ZBFW) functionality in Cisco IOS, possibly 15.4 and earlier, and IOS XE, possibly 3.13 and earlier, mishandles zone checking for existing sessions, which allows remote attackers to bypass intende...Show more The Zone-Based Firewall (ZBFW) functionality in Cisco IOS, possibly 15.4 and earlier, and IOS XE, possibly 3.13 and earlier, mishandles zone checking for existing sessions, which allows remote attackers to bypass intended resource-access restrictions via spoofed traffic that matches one of these sessions, aka Bug IDs CSCun94946 and CSCun96847.Show less
CVE-2016-6415 1Cisco 3Ios Ios XeIos Xr Apr 22, 2026 Sep 19, 2016 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x through 5.2.x, and PIX before 7.0 allows remote attackers to obtain sensitive information...Show more The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x through 5.2.x, and PIX before 7.0 allows remote attackers to obtain sensitive information from device memory via a Security Association (SA) negotiation request, aka Bug IDs CSCvb29204 and CSCvb36055 or BENIGNCERTAIN.Show less
CVE-2016-1459 1Cisco 2Ios Ios Xe May 6, 2026 Jul 17, 2016 N/A· v4 5.3 MEDIUM· v3 4.9 MEDIUM· v2 Cisco IOS 12.4 and 15.0 through 15.5 and IOS XE 3.13 through 3.17 allow remote authenticated users to cause a denial of service (device reload) via crafted attributes in a BGP message, aka Bug ID CSCuz21061.
CVE-2016-1428 1Cisco 1Ios Xe May 6, 2026 Jun 23, 2016 N/A· v4 6.5 MEDIUM· v3 6.8 MEDIUM· v2 Double free vulnerability in Cisco IOS XE 3.15S, 3.16S, and 3.17S allows remote authenticated users to cause a denial of service (device restart) via a sequence of crafted SNMP read requests, aka Bug ID CSCux13174.
CVE-2016-1432 1Cisco 1Ios Xe May 6, 2026 Jun 18, 2016 N/A· v4 6.5 MEDIUM· v3 6.8 MEDIUM· v2 Cisco IOS XE 3.15S and 3.16S on cBR-8 Converged Broadband Router devices allows remote authenticated users to cause a denial of service (NULL pointer dereference and card restart) via a crafted SNMP request, aka Bug ID C...Show more Cisco IOS XE 3.15S and 3.16S on cBR-8 Converged Broadband Router devices allows remote authenticated users to cause a denial of service (NULL pointer dereference and card restart) via a crafted SNMP request, aka Bug ID CSCuu68862.Show less
CVE-2016-1409 1Cisco 4Ios Ios XeIos Xr+1 more May 6, 2026 May 29, 2016 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.17S, IOS XR 2.0.0 through 5.3.2, and NX-OS allows remote attackers to cause a denial of service (packet-processing outag...Show more The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.17S, IOS XR 2.0.0 through 5.3.2, and NX-OS allows remote attackers to cause a denial of service (packet-processing outage) via crafted ND messages, aka Bug ID CSCuz66542, as exploited in the wild in May 2016.Show less
CVE-2015-6360 1Cisco 14Adaptive Security Appliance Software Dx Series Ip Phones FirmwareIos Xe+11 more May 6, 2026 Apr 21, 2016 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.
CVE-2016-1384 1Cisco 2Ios Ios Xe May 6, 2026 Apr 20, 2016 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The NTP implementation in Cisco IOS 15.1 and 15.5 and IOS XE 3.2 through 3.17 allows remote attackers to modify the system time via crafted packets, aka Bug ID CSCux46898.
CVE-2016-1350 6Cisco LenovoSamsung+3 more 6Gs1900 10hp Firmware Ios XeKeymouse Firmware+3 more May 6, 2026 Mar 26, 2016 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Cisco IOS 15.3 and 15.4, Cisco IOS XE 3.8 through 3.11, and Cisco Unified Communications Manager allow remote attackers to cause a denial of service (device reload) via malformed SIP messages, aka Bug ID CSCuj23293.
CVE-2016-1349 7Cisco IntelNetgear+4 more 7Core I5 9400f Firmware Gs1900 10hp FirmwareIos Xe+4 more May 6, 2026 Mar 26, 2016 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 The Smart Install client implementation in Cisco IOS 12.2, 15.0, and 15.2 and IOS XE 3.2 through 3.7 allows remote attackers to cause a denial of service (device reload) via crafted image list parameters in a Smart Insta...Show more The Smart Install client implementation in Cisco IOS 12.2, 15.0, and 15.2 and IOS XE 3.2 through 3.7 allows remote attackers to cause a denial of service (device reload) via crafted image list parameters in a Smart Install packet, aka Bug ID CSCuv45410.Show less
CVE-2016-1348 6Cisco NetgearSamsung+3 more 6Gs1900 10hp Firmware Ios XeJr6150 Firmware+3 more May 6, 2026 Mar 26, 2016 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Cisco IOS 15.0 through 15.5 and IOS XE 3.3 through 3.16 allow remote attackers to cause a denial of service (device reload) via a crafted DHCPv6 Relay message, aka Bug ID CSCus55821.
CVE-2016-1344 7Cisco LenovoNetgear+4 more 7Gs1900 10hp Firmware Ios XeJr6150 Firmware+4 more May 6, 2026 Mar 26, 2016 N/A· v4 5.9 MEDIUM· v3 7.1 HIGH· v2 The IKEv2 implementation in Cisco IOS 15.0 through 15.6 and IOS XE 3.3 through 3.17 allows remote attackers to cause a denial of service (device reload) via fragmented packets, aka Bug ID CSCux38417.

Previous 1...202122...28 Next