Ios Xr

ios_xr

Vendor: Cisco • 193 CVEs

CVEs (193)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2014-3270 1Cisco 1Ios Xr May 6, 2026 May 20, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The DHCPv6 implementation in Cisco IOS XR allows remote attackers to cause a denial of service (process hang) via a malformed packet, aka Bug ID CSCul80924.
CVE-2014-2144 1Cisco 1Ios Xr May 6, 2026 Apr 5, 2014 N/A· v4 N/A· v3 6.1 MEDIUM· v2 Cisco IOS XR does not properly throttle ICMPv6 redirect packets, which allows remote attackers to cause a denial of service (IPv4 and IPv6 transit outage) via crafted redirect messages, aka Bug ID CSCum14266.
CVE-2013-6700 1Cisco 1Ios Xr Apr 29, 2026 Nov 29, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The SNMP module in Cisco IOS XR allows remote attackers to cause a denial of service (process reload) via a request for an unspecified MIB, aka Bug ID CSCuh43144.
CVE-2013-5565 1Cisco 1Ios Xr Apr 29, 2026 Nov 8, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The OSPFv3 functionality in Cisco IOS XR 5.1 allows remote attackers to cause a denial of service (process crash) via a malformed LSA Type-1 packet, aka Bug ID CSCuj82176.
CVE-2013-5549 1Cisco 1Ios Xr Apr 29, 2026 Oct 25, 2013 N/A· v4 N/A· v3 7.1 HIGH· v2 Cisco IOS XR 3.8.1 through 4.2.0 does not properly process fragmented packets within the RP-A, RP-B, PRP, and DRP-B route-processor components, which allows remote attackers to cause a denial of service (transmission out...Show more Cisco IOS XR 3.8.1 through 4.2.0 does not properly process fragmented packets within the RP-A, RP-B, PRP, and DRP-B route-processor components, which allows remote attackers to cause a denial of service (transmission outage) via (1) IPv4 or (2) IPv6 traffic, aka Bug ID CSCuh30380.Show less
CVE-2013-5503 1Cisco 1Ios Xr Apr 29, 2026 Oct 2, 2013 N/A· v4 N/A· v3 7.8 HIGH· v2 The UDP process in Cisco IOS XR 4.3.1 does not free packet memory upon detecting full packet queues, which allows remote attackers to cause a denial of service (memory consumption) via UDP packets to listening ports, aka...Show more The UDP process in Cisco IOS XR 4.3.1 does not free packet memory upon detecting full packet queues, which allows remote attackers to cause a denial of service (memory consumption) via UDP packets to listening ports, aka Bug ID CSCue69413.Show less
CVE-2013-5498 1Cisco 1Ios Xr Apr 29, 2026 Sep 27, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The PPTP-ALG component in CRS Carrier Grade Services Engine (CGSE) and ASR 9000 Integrated Service Module (ISM) in Cisco IOS XR allows remote attackers to cause a denial of service (module reset) via crafted packet strea...Show more The PPTP-ALG component in CRS Carrier Grade Services Engine (CGSE) and ASR 9000 Integrated Service Module (ISM) in Cisco IOS XR allows remote attackers to cause a denial of service (module reset) via crafted packet streams, aka Bug ID CSCue91963.Show less
CVE-2013-3470 1Cisco 1Ios Xr Apr 29, 2026 Aug 30, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The RIP process in Cisco IOS XR allows remote attackers to cause a denial of service (process crash) via a crafted version-2 RIP packet, aka Bug ID CSCue46731.
CVE-2013-3464 1Cisco 1Ios Xr Apr 29, 2026 Aug 13, 2013 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Cisco IOS XR allows local users to cause a denial of service (Silicon Packet Processor memory corruption, improper mutex handling, and device reload) by starting an outbound flood of large ICMP Echo Request packets and s...Show more Cisco IOS XR allows local users to cause a denial of service (Silicon Packet Processor memory corruption, improper mutex handling, and device reload) by starting an outbound flood of large ICMP Echo Request packets and stopping this with a CTRL-C sequence, aka Bug ID CSCui60347.Show less
CVE-2013-1204 1Cisco 1Ios Xr Apr 29, 2026 May 23, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Memory leak in the SNMP process in Cisco IOS XR allows remote attackers to cause a denial of service (memory consumption or process reload) by sending many port-162 UDP packets, aka Bug ID CSCug80345.
CVE-2013-1234 1Cisco 1Ios Xr Apr 29, 2026 May 3, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 The SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (process restart) via crafted SNMP packets, aka Bug ID CSCue69472.
CVE-2013-1216 1Cisco 1Ios Xr Apr 29, 2026 Apr 29, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Memory leak in the SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (memory consumption and process restart) via crafted SNMP packets, aka Bug ID CSCue31546.
CVE-2013-1162 1Cisco 1Ios Xr Apr 29, 2026 Mar 26, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The traffic engineering (TE) processing subsystem in Cisco IOS XR allows remote attackers to cause a denial of service (process restart) via crafted TE packets, aka Bug ID CSCue04000.
CVE-2012-4617 1Cisco 3Ios Ios XeIos Xr Apr 29, 2026 Sep 27, 2012 N/A· v4 N/A· v3 7.1 HIGH· v2 The BGP implementation in Cisco IOS 15.2, IOS XE 3.5.xS before 3.5.2S, and IOS XR 4.1.0 through 4.2.2 allows remote attackers to cause a denial of service (multiple connection resets) by leveraging a peer relationship an...Show more The BGP implementation in Cisco IOS 15.2, IOS XE 3.5.xS before 3.5.2S, and IOS XR 4.1.0 through 4.2.2 allows remote attackers to cause a denial of service (multiple connection resets) by leveraging a peer relationship and sending a malformed attribute, aka Bug IDs CSCtt35379, CSCty58300, CSCtz63248, and CSCtz62914.Show less
CVE-2012-2488 1Cisco 3Asr 9000 Rsp440 Router Crs Performance Route ProcessorIos Xr Apr 29, 2026 May 31, 2012 N/A· v4 N/A· v3 7.8 HIGH· v2 Cisco IOS XR before 4.2.1 on ASR 9000 series devices and CRS series devices allows remote attackers to cause a denial of service (packet transmission outage) via a crafted packet, aka Bug IDs CSCty94537 and CSCtz62593.
CVE-2011-3295 1Cisco 1Ios Xr Apr 29, 2026 May 2, 2012 N/A· v4 N/A· v3 7.8 HIGH· v2 The NETIO and IPV4_IO processes in Cisco IOS XR 3.8 through 4.1, as used in Cisco Carrier Routing System and other products, allow remote attackers to cause a denial of service (CPU consumption) via crafted network traff...Show more The NETIO and IPV4_IO processes in Cisco IOS XR 3.8 through 4.1, as used in Cisco Carrier Routing System and other products, allow remote attackers to cause a denial of service (CPU consumption) via crafted network traffic, aka Bug ID CSCti59888.Show less
CVE-2011-2549 1Cisco 3Asr 9006 Router Asr 9010 RouterIos Xr Apr 29, 2026 Jul 28, 2011 N/A· v4 N/A· v3 7.8 HIGH· v2 Unspecified vulnerability in Cisco IOS XR 4.1.x before 4.1.1 on Cisco Aggregation Services Routers (ASR) 9000 series devices allows remote attackers to cause a denial of service (line-card reload) via an IPv4 packet, aka...Show more Unspecified vulnerability in Cisco IOS XR 4.1.x before 4.1.1 on Cisco Aggregation Services Routers (ASR) 9000 series devices allows remote attackers to cause a denial of service (line-card reload) via an IPv4 packet, aka Bug ID CSCtr26695.Show less
CVE-2011-1651 1Cisco 1Ios Xr Apr 29, 2026 May 31, 2011 N/A· v4 N/A· v3 7.8 HIGH· v2 Cisco IOS XR 3.9.x and 4.0.x before 4.0.3 and 4.1.x before 4.1.1, when an SPA interface processor is installed, allows remote attackers to cause a denial of service (device reload) via a crafted IPv4 packet, aka Bug ID C...Show more Cisco IOS XR 3.9.x and 4.0.x before 4.0.3 and 4.1.x before 4.1.1, when an SPA interface processor is installed, allows remote attackers to cause a denial of service (device reload) via a crafted IPv4 packet, aka Bug ID CSCto45095.Show less
CVE-2011-0949 1Cisco 1Ios Xr Apr 29, 2026 May 31, 2011 N/A· v4 N/A· v3 7.8 HIGH· v2 Cisco IOS XR 3.6.x, 3.8.x before 3.8.3, and 3.9.x before 3.9.1 does not properly remove sshd_lock files from /tmp/, which allows remote attackers to cause a denial of service (disk consumption) by making many SSHv1 conne...Show more Cisco IOS XR 3.6.x, 3.8.x before 3.8.3, and 3.9.x before 3.9.1 does not properly remove sshd_lock files from /tmp/, which allows remote attackers to cause a denial of service (disk consumption) by making many SSHv1 connections, aka Bug ID CSCtd64417.Show less
CVE-2011-0943 1Cisco 1Ios Xr Apr 29, 2026 May 31, 2011 N/A· v4 N/A· v3 7.8 HIGH· v2 Cisco IOS XR 3.8.3, 3.8.4, and 3.9.1 allows remote attackers to cause a denial of service (NetIO process restart or device reload) via a crafted IPv4 packet, aka Bug ID CSCth44147.

Previous 1...6 7 8910 Next