Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2024-20312

Summary
Assigner-cisco
Assigner Org ID-d1c1063e-7a18-46af-9102-31f8928bc633
Published At-27 Mar, 2024 | 16:56
Updated At-26 Aug, 2025 | 20:06
Rejected At-
Credits

A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation when parsing an ingress IS-IS packet. An attacker could exploit this vulnerability by sending a crafted IS-IS packet to an affected device after forming an adjacency. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. Note: The IS-IS protocol is a routing protocol. To exploit this vulnerability, an attacker must be Layer 2-adjacent to the affected device and have formed an adjacency.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:cisco
Assigner Org ID:d1c1063e-7a18-46af-9102-31f8928bc633
Published At:27 Mar, 2024 | 16:56
Updated At:26 Aug, 2025 | 20:06
Rejected At:
▼CVE Numbering Authority (CNA)

A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation when parsing an ingress IS-IS packet. An attacker could exploit this vulnerability by sending a crafted IS-IS packet to an affected device after forming an adjacency. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. Note: The IS-IS protocol is a routing protocol. To exploit this vulnerability, an attacker must be Layer 2-adjacent to the affected device and have formed an adjacency.

Affected Products
Vendor
Cisco Systems, Inc.Cisco
Product
IOS
Versions
Affected
  • 15.2(1)S
  • 15.2(2)S
  • 15.2(1)S1
  • 15.2(4)S
  • 15.2(1)S2
  • 15.2(2)S1
  • 15.2(2)S2
  • 15.2(2)S0a
  • 15.2(2)S0c
  • 15.2(4)S1
  • 15.2(4)S4
  • 15.2(4)S6
  • 15.2(4)S2
  • 15.2(4)S5
  • 15.2(4)S3
  • 15.2(4)S3a
  • 15.2(4)S4a
  • 15.2(4)S7
  • 15.3(1)T
  • 15.3(2)T
  • 15.3(1)T1
  • 15.3(1)T2
  • 15.3(1)T3
  • 15.3(1)T4
  • 15.3(2)T1
  • 15.3(2)T2
  • 15.3(2)T3
  • 15.3(2)T4
  • 15.1(2)SG
  • 15.1(2)SG1
  • 15.1(2)SG2
  • 15.1(2)SG3
  • 15.1(2)SG4
  • 15.1(2)SG5
  • 15.1(2)SG6
  • 15.1(2)SG7
  • 15.1(2)SG8
  • 15.2(4)M
  • 15.2(4)M1
  • 15.2(4)M2
  • 15.2(4)M4
  • 15.2(4)M3
  • 15.2(4)M5
  • 15.2(4)M8
  • 15.2(4)M10
  • 15.2(4)M7
  • 15.2(4)M6
  • 15.2(4)M9
  • 15.2(4)M6a
  • 15.2(4)M11
  • 15.0(1)EX
  • 15.2(3)GC
  • 15.2(3)GC1
  • 15.2(4)GC
  • 15.2(4)GC1
  • 15.2(4)GC2
  • 15.2(4)GC3
  • 15.1(1)SY
  • 15.1(1)SY1
  • 15.1(2)SY
  • 15.1(2)SY1
  • 15.1(2)SY2
  • 15.1(1)SY2
  • 15.1(1)SY3
  • 15.1(2)SY3
  • 15.1(1)SY4
  • 15.1(2)SY4
  • 15.1(1)SY5
  • 15.1(2)SY5
  • 15.1(2)SY4a
  • 15.1(1)SY6
  • 15.1(2)SY6
  • 15.1(2)SY7
  • 15.1(2)SY8
  • 15.1(2)SY9
  • 15.1(2)SY10
  • 15.1(2)SY11
  • 15.1(2)SY12
  • 15.1(2)SY13
  • 15.1(2)SY14
  • 15.1(2)SY15
  • 15.1(2)SY16
  • 15.3(1)S
  • 15.3(2)S
  • 15.3(3)S
  • 15.3(1)S2
  • 15.3(1)S1
  • 15.3(2)S2
  • 15.3(2)S1
  • 15.3(3)S1
  • 15.3(3)S2
  • 15.3(3)S3
  • 15.3(3)S6
  • 15.3(3)S4
  • 15.3(3)S1a
  • 15.3(3)S5
  • 15.3(3)S7
  • 15.3(3)S8
  • 15.3(3)S9
  • 15.3(3)S10
  • 15.3(3)S8a
  • 15.4(1)T
  • 15.4(2)T
  • 15.4(1)T2
  • 15.4(1)T1
  • 15.4(1)T3
  • 15.4(2)T1
  • 15.4(2)T3
  • 15.4(2)T2
  • 15.4(1)T4
  • 15.4(2)T4
  • 15.2(1)E
  • 15.2(2)E
  • 15.2(1)E1
  • 15.2(3)E
  • 15.2(1)E2
  • 15.2(1)E3
  • 15.2(2)E1
  • 15.2(4)E
  • 15.2(3)E1
  • 15.2(2)E2
  • 15.2(2)E3
  • 15.2(2a)E2
  • 15.2(3)E2
  • 15.2(3a)E
  • 15.2(3)E3
  • 15.2(4)E1
  • 15.2(2)E4
  • 15.2(2)E5
  • 15.2(4)E2
  • 15.2(3)E4
  • 15.2(5)E
  • 15.2(4)E3
  • 15.2(2)E6
  • 15.2(5)E1
  • 15.2(2)E5a
  • 15.2(3)E5
  • 15.2(2)E5b
  • 15.2(5a)E1
  • 15.2(4)E4
  • 15.2(2)E7
  • 15.2(5)E2
  • 15.2(6)E
  • 15.2(5)E2b
  • 15.2(4)E5
  • 15.2(5)E2c
  • 15.2(2)E8
  • 15.2(6)E0a
  • 15.2(6)E1
  • 15.2(2)E7b
  • 15.2(4)E5a
  • 15.2(6)E0c
  • 15.2(4)E6
  • 15.2(6)E2
  • 15.2(2)E9
  • 15.2(4)E7
  • 15.2(7)E
  • 15.2(2)E10
  • 15.2(4)E8
  • 15.2(6)E2a
  • 15.2(7)E1
  • 15.2(7)E0b
  • 15.2(7)E0s
  • 15.2(6)E3
  • 15.2(4)E9
  • 15.2(7)E2
  • 15.2(7a)E0b
  • 15.2(4)E10
  • 15.2(7)E3
  • 15.2(7)E1a
  • 15.2(7b)E0b
  • 15.2(4)E10a
  • 15.2(7)E4
  • 15.2(8)E
  • 15.2(8)E1
  • 15.2(7)E5
  • 15.2(7)E6
  • 15.2(8)E2
  • 15.2(4)E10d
  • 15.2(7)E7
  • 15.2(8)E3
  • 15.2(7)E8
  • 15.2(8)E4
  • 15.2(4)E10e
  • 15.2(7)E9
  • 15.2(8)E5
  • 15.4(1)S
  • 15.4(2)S
  • 15.4(3)S
  • 15.4(1)S1
  • 15.4(1)S2
  • 15.4(2)S1
  • 15.4(1)S3
  • 15.4(3)S1
  • 15.4(2)S2
  • 15.4(3)S2
  • 15.4(3)S3
  • 15.4(1)S4
  • 15.4(2)S3
  • 15.4(2)S4
  • 15.4(3)S4
  • 15.4(3)S5
  • 15.4(3)S6
  • 15.4(3)S7
  • 15.4(3)S6a
  • 15.4(3)S8
  • 15.4(3)S9
  • 15.4(3)S10
  • 15.3(3)M
  • 15.3(3)M1
  • 15.3(3)M2
  • 15.3(3)M3
  • 15.3(3)M5
  • 15.3(3)M4
  • 15.3(3)M6
  • 15.3(3)M7
  • 15.3(3)M8
  • 15.3(3)M9
  • 15.3(3)M10
  • 15.3(3)M8a
  • 15.2(1)EY
  • 15.2(1)SY
  • 15.2(1)SY1
  • 15.2(1)SY0a
  • 15.2(1)SY2
  • 15.2(2)SY
  • 15.2(1)SY1a
  • 15.2(2)SY1
  • 15.2(2)SY2
  • 15.2(1)SY3
  • 15.2(1)SY4
  • 15.2(2)SY3
  • 15.2(1)SY5
  • 15.2(1)SY6
  • 15.2(1)SY7
  • 15.2(1)SY8
  • 15.4(1)CG
  • 15.4(1)CG1
  • 15.4(2)CG
  • 15.5(1)S
  • 15.5(2)S
  • 15.5(1)S1
  • 15.5(3)S
  • 15.5(1)S2
  • 15.5(1)S3
  • 15.5(2)S1
  • 15.5(2)S2
  • 15.5(3)S1
  • 15.5(3)S1a
  • 15.5(2)S3
  • 15.5(3)S2
  • 15.5(3)S0a
  • 15.5(3)S3
  • 15.5(1)S4
  • 15.5(2)S4
  • 15.5(3)S4
  • 15.5(3)S5
  • 15.5(3)S6
  • 15.5(3)S6a
  • 15.5(3)S7
  • 15.5(3)S6b
  • 15.5(3)S8
  • 15.5(3)S9
  • 15.5(3)S10
  • 15.5(3)S9a
  • 15.2(2)EB
  • 15.2(2)EB1
  • 15.2(2)EB2
  • 15.2(6)EB
  • 15.5(1)T
  • 15.5(1)T1
  • 15.5(2)T
  • 15.5(1)T2
  • 15.5(1)T3
  • 15.5(2)T1
  • 15.5(2)T2
  • 15.5(2)T3
  • 15.5(2)T4
  • 15.5(1)T4
  • 15.2(2)EA
  • 15.2(2)EA1
  • 15.2(2)EA2
  • 15.2(3)EA
  • 15.2(4)EA
  • 15.2(4)EA1
  • 15.2(2)EA3
  • 15.2(4)EA3
  • 15.2(5)EA
  • 15.2(4)EA4
  • 15.2(4)EA5
  • 15.2(4)EA6
  • 15.2(4)EA7
  • 15.2(4)EA8
  • 15.2(4)EA9
  • 15.2(4)EA9a
  • 15.5(3)M
  • 15.5(3)M1
  • 15.5(3)M0a
  • 15.5(3)M2
  • 15.5(3)M3
  • 15.5(3)M4
  • 15.5(3)M4a
  • 15.5(3)M5
  • 15.5(3)M6
  • 15.5(3)M7
  • 15.5(3)M6a
  • 15.5(3)M8
  • 15.5(3)M9
  • 15.5(3)M10
  • 15.5(3)SN
  • 15.6(1)S
  • 15.6(2)S
  • 15.6(2)S1
  • 15.6(1)S1
  • 15.6(1)S2
  • 15.6(2)S2
  • 15.6(1)S3
  • 15.6(2)S3
  • 15.6(1)S4
  • 15.6(2)S4
  • 15.6(1)T
  • 15.6(2)T
  • 15.6(1)T0a
  • 15.6(1)T1
  • 15.6(2)T1
  • 15.6(1)T2
  • 15.6(2)T2
  • 15.6(1)T3
  • 15.6(2)T3
  • 15.3(1)SY
  • 15.3(1)SY1
  • 15.3(1)SY2
  • 15.6(2)SP
  • 15.6(2)SP1
  • 15.6(2)SP2
  • 15.6(2)SP3
  • 15.6(2)SP4
  • 15.6(2)SP5
  • 15.6(2)SP6
  • 15.6(2)SP7
  • 15.6(2)SP8
  • 15.6(2)SP9
  • 15.6(2)SP10
  • 15.6(2)SN
  • 15.6(3)M
  • 15.6(3)M1
  • 15.6(3)M0a
  • 15.6(3)M1b
  • 15.6(3)M2
  • 15.6(3)M3
  • 15.6(3)M3a
  • 15.6(3)M4
  • 15.6(3)M5
  • 15.6(3)M6
  • 15.6(3)M7
  • 15.6(3)M6a
  • 15.6(3)M6b
  • 15.6(3)M8
  • 15.6(3)M9
  • 15.2(4)EC1
  • 15.2(4)EC2
  • 15.4(1)SY
  • 15.4(1)SY1
  • 15.4(1)SY2
  • 15.4(1)SY3
  • 15.4(1)SY4
  • 15.5(1)SY
  • 15.5(1)SY1
  • 15.5(1)SY2
  • 15.5(1)SY3
  • 15.5(1)SY4
  • 15.5(1)SY5
  • 15.5(1)SY6
  • 15.5(1)SY7
  • 15.5(1)SY8
  • 15.5(1)SY9
  • 15.5(1)SY10
  • 15.5(1)SY11
  • 15.5(1)SY12
  • 15.7(3)M
  • 15.7(3)M1
  • 15.7(3)M0a
  • 15.7(3)M3
  • 15.7(3)M2
  • 15.7(3)M4
  • 15.7(3)M5
  • 15.7(3)M4a
  • 15.7(3)M4b
  • 15.7(3)M6
  • 15.7(3)M7
  • 15.7(3)M8
  • 15.7(3)M9
  • 15.8(3)M
  • 15.8(3)M1
  • 15.8(3)M0a
  • 15.8(3)M0b
  • 15.8(3)M2
  • 15.8(3)M1a
  • 15.8(3)M3
  • 15.8(3)M2a
  • 15.8(3)M4
  • 15.8(3)M3a
  • 15.8(3)M3b
  • 15.8(3)M5
  • 15.8(3)M6
  • 15.8(3)M7
  • 15.8(3)M8
  • 15.8(3)M9
  • 15.9(3)M
  • 15.9(3)M1
  • 15.9(3)M0a
  • 15.9(3)M2
  • 15.9(3)M3
  • 15.9(3)M2a
  • 15.9(3)M3a
  • 15.9(3)M4
  • 15.9(3)M3b
  • 15.9(3)M5
  • 15.9(3)M4a
  • 15.9(3)M6
  • 15.9(3)M7
  • 15.9(3)M6a
  • 15.9(3)M6b
  • 15.9(3)M8
  • 15.9(3)M7a
  • 15.9(3)M8b
Vendor
Cisco Systems, Inc.Cisco
Product
Cisco IOS XE Software
Versions
Affected
  • 3.7.0S
  • 3.7.1S
  • 3.7.2S
  • 3.7.3S
  • 3.7.4S
  • 3.7.5S
  • 3.7.6S
  • 3.7.7S
  • 3.7.4aS
  • 3.7.2tS
  • 3.7.0bS
  • 3.7.1aS
  • 3.8.0S
  • 3.8.1S
  • 3.8.2S
  • 3.9.1S
  • 3.9.0S
  • 3.9.2S
  • 3.9.1aS
  • 3.9.0aS
  • 3.2.0SE
  • 3.2.1SE
  • 3.2.2SE
  • 3.2.3SE
  • 3.3.0SE
  • 3.3.1SE
  • 3.3.2SE
  • 3.3.3SE
  • 3.3.4SE
  • 3.3.5SE
  • 3.3.0XO
  • 3.3.1XO
  • 3.3.2XO
  • 3.4.0SG
  • 3.4.2SG
  • 3.4.1SG
  • 3.4.3SG
  • 3.4.4SG
  • 3.4.5SG
  • 3.4.6SG
  • 3.4.7SG
  • 3.4.8SG
  • 3.5.0E
  • 3.5.1E
  • 3.5.2E
  • 3.5.3E
  • 3.10.0S
  • 3.10.1S
  • 3.10.2S
  • 3.10.3S
  • 3.10.4S
  • 3.10.5S
  • 3.10.6S
  • 3.10.2tS
  • 3.10.7S
  • 3.10.1xbS
  • 3.10.8S
  • 3.10.8aS
  • 3.10.9S
  • 3.10.10S
  • 3.11.1S
  • 3.11.2S
  • 3.11.0S
  • 3.11.3S
  • 3.11.4S
  • 3.12.0S
  • 3.12.1S
  • 3.12.2S
  • 3.12.3S
  • 3.12.0aS
  • 3.12.4S
  • 3.13.0S
  • 3.13.1S
  • 3.13.2S
  • 3.13.3S
  • 3.13.4S
  • 3.13.5S
  • 3.13.2aS
  • 3.13.0aS
  • 3.13.5aS
  • 3.13.6S
  • 3.13.7S
  • 3.13.6aS
  • 3.13.7aS
  • 3.13.8S
  • 3.13.9S
  • 3.13.10S
  • 3.6.0E
  • 3.6.1E
  • 3.6.2aE
  • 3.6.2E
  • 3.6.3E
  • 3.6.4E
  • 3.6.5E
  • 3.6.6E
  • 3.6.5aE
  • 3.6.5bE
  • 3.6.7E
  • 3.6.8E
  • 3.6.7bE
  • 3.6.9E
  • 3.6.10E
  • 3.14.0S
  • 3.14.1S
  • 3.14.2S
  • 3.14.3S
  • 3.14.4S
  • 3.15.0S
  • 3.15.1S
  • 3.15.2S
  • 3.15.1cS
  • 3.15.3S
  • 3.15.4S
  • 3.7.0E
  • 3.7.1E
  • 3.7.2E
  • 3.7.3E
  • 3.7.4E
  • 3.7.5E
  • 3.16.0S
  • 3.16.1S
  • 3.16.1aS
  • 3.16.2S
  • 3.16.2aS
  • 3.16.0cS
  • 3.16.3S
  • 3.16.2bS
  • 3.16.3aS
  • 3.16.4S
  • 3.16.4aS
  • 3.16.4bS
  • 3.16.5S
  • 3.16.4dS
  • 3.16.6S
  • 3.16.7S
  • 3.16.6bS
  • 3.16.7aS
  • 3.16.7bS
  • 3.16.8S
  • 3.16.9S
  • 3.16.10S
  • 3.17.0S
  • 3.17.1S
  • 3.17.2S
  • 3.17.1aS
  • 3.17.3S
  • 3.17.4S
  • 16.1.1
  • 16.1.2
  • 16.1.3
  • 16.2.1
  • 16.2.2
  • 3.8.0E
  • 3.8.1E
  • 3.8.2E
  • 3.8.3E
  • 3.8.4E
  • 3.8.5E
  • 3.8.5aE
  • 3.8.6E
  • 3.8.7E
  • 3.8.8E
  • 3.8.9E
  • 3.8.10E
  • 3.8.10eE
  • 16.3.1
  • 16.3.2
  • 16.3.3
  • 16.3.1a
  • 16.3.4
  • 16.3.5
  • 16.3.5b
  • 16.3.6
  • 16.3.7
  • 16.3.8
  • 16.3.9
  • 16.3.10
  • 16.3.11
  • 16.4.1
  • 16.4.2
  • 16.4.3
  • 16.5.1
  • 16.5.1a
  • 16.5.1b
  • 16.5.2
  • 16.5.3
  • 3.18.0aS
  • 3.18.0S
  • 3.18.1S
  • 3.18.2S
  • 3.18.3S
  • 3.18.4S
  • 3.18.0SP
  • 3.18.1SP
  • 3.18.1aSP
  • 3.18.1bSP
  • 3.18.1cSP
  • 3.18.2SP
  • 3.18.2aSP
  • 3.18.3SP
  • 3.18.4SP
  • 3.18.3aSP
  • 3.18.3bSP
  • 3.18.5SP
  • 3.18.6SP
  • 3.18.7SP
  • 3.18.8aSP
  • 3.18.9SP
  • 3.9.0E
  • 3.9.1E
  • 3.9.2E
  • 16.6.1
  • 16.6.2
  • 16.6.3
  • 16.6.4
  • 16.6.5
  • 16.6.4a
  • 16.6.5a
  • 16.6.6
  • 16.6.7
  • 16.6.8
  • 16.6.9
  • 16.6.10
  • 16.7.1
  • 16.7.1a
  • 16.7.1b
  • 16.7.2
  • 16.7.3
  • 16.7.4
  • 16.8.1
  • 16.8.1a
  • 16.8.1b
  • 16.8.1s
  • 16.8.1c
  • 16.8.1d
  • 16.8.2
  • 16.8.1e
  • 16.8.3
  • 16.9.1
  • 16.9.2
  • 16.9.1a
  • 16.9.1b
  • 16.9.1s
  • 16.9.3
  • 16.9.4
  • 16.9.3a
  • 16.9.5
  • 16.9.5f
  • 16.9.6
  • 16.9.7
  • 16.9.8
  • 16.10.1
  • 16.10.1a
  • 16.10.1b
  • 16.10.1s
  • 16.10.1c
  • 16.10.1e
  • 16.10.1d
  • 16.10.2
  • 16.10.1f
  • 16.10.1g
  • 16.10.3
  • 3.10.0E
  • 3.10.1E
  • 3.10.0cE
  • 3.10.2E
  • 3.10.3E
  • 16.11.1
  • 16.11.1a
  • 16.11.1b
  • 16.11.2
  • 16.11.1s
  • 16.12.1
  • 16.12.1s
  • 16.12.1a
  • 16.12.1c
  • 16.12.1w
  • 16.12.2
  • 16.12.1y
  • 16.12.2a
  • 16.12.3
  • 16.12.8
  • 16.12.2s
  • 16.12.1x
  • 16.12.1t
  • 16.12.4
  • 16.12.3s
  • 16.12.3a
  • 16.12.4a
  • 16.12.5
  • 16.12.6
  • 16.12.1z1
  • 16.12.5a
  • 16.12.5b
  • 16.12.1z2
  • 16.12.6a
  • 16.12.7
  • 16.12.9
  • 16.12.10
  • 16.12.10a
  • 3.11.0E
  • 3.11.1E
  • 3.11.2E
  • 3.11.3E
  • 3.11.1aE
  • 3.11.4E
  • 3.11.3aE
  • 3.11.5E
  • 3.11.6E
  • 3.11.7E
  • 3.11.8E
  • 3.11.9E
  • 17.1.1
  • 17.1.1a
  • 17.1.1s
  • 17.1.1t
  • 17.1.3
  • 17.2.1
  • 17.2.1r
  • 17.2.1a
  • 17.2.1v
  • 17.2.2
  • 17.2.3
  • 17.3.1
  • 17.3.2
  • 17.3.3
  • 17.3.1a
  • 17.3.1w
  • 17.3.2a
  • 17.3.1x
  • 17.3.1z
  • 17.3.4
  • 17.3.5
  • 17.3.4a
  • 17.3.6
  • 17.3.4b
  • 17.3.4c
  • 17.3.5a
  • 17.3.5b
  • 17.3.7
  • 17.3.8
  • 17.3.8a
  • 17.4.1
  • 17.4.2
  • 17.4.1a
  • 17.4.1b
  • 17.4.2a
  • 17.5.1
  • 17.5.1a
  • 17.6.1
  • 17.6.2
  • 17.6.1w
  • 17.6.1a
  • 17.6.1x
  • 17.6.3
  • 17.6.1y
  • 17.6.1z
  • 17.6.3a
  • 17.6.4
  • 17.6.1z1
  • 17.6.5
  • 17.6.5a
  • 17.7.1
  • 17.7.1a
  • 17.7.1b
  • 17.7.2
  • 17.10.1
  • 17.10.1a
  • 17.10.1b
  • 17.8.1
  • 17.8.1a
  • 17.9.1
  • 17.9.1w
  • 17.9.2
  • 17.9.1a
  • 17.9.1x
  • 17.9.1y
  • 17.9.3
  • 17.9.2a
  • 17.9.1x1
  • 17.9.3a
  • 17.9.1y1
  • 17.11.1
  • 17.11.1a
  • 17.11.99SW
Problem Types
TypeCWE IDDescription
cweCWE-476NULL Pointer Dereference
Type: cwe
CWE ID: CWE-476
Description: NULL Pointer Dereference
Metrics
VersionBase scoreBase severityVector
3.17.4HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Version: 3.1
Base score: 7.4
Base severity: HIGH
Vector:
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits

The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.

Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isis-sGjyOUHX
N/A
Hyperlink: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isis-sGjyOUHX
Resource: N/A
▼Authorized Data Publishers (ADP)
1. CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
2. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isis-sGjyOUHX
x_transferred
Hyperlink: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isis-sGjyOUHX
Resource:
x_transferred
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:psirt@cisco.com
Published At:27 Mar, 2024 | 17:15
Updated At:26 Aug, 2025 | 21:15

A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation when parsing an ingress IS-IS packet. An attacker could exploit this vulnerability by sending a crafted IS-IS packet to an affected device after forming an adjacency. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. Note: The IS-IS protocol is a routing protocol. To exploit this vulnerability, an attacker must be Layer 2-adjacent to the affected device and have formed an adjacency.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.17.4HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Type: Secondary
Version: 3.1
Base score: 7.4
Base severity: HIGH
Vector:
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
CPE Matches
Cisco Systems, Inc.
cisco
>>ios>>15.0\(1\)ex
cpe:2.3:o:cisco:ios:15.0\(1\)ex:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(1\)sy
cpe:2.3:o:cisco:ios:15.1\(1\)sy:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(1\)sy1
cpe:2.3:o:cisco:ios:15.1\(1\)sy1:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(1\)sy2
cpe:2.3:o:cisco:ios:15.1\(1\)sy2:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(1\)sy3
cpe:2.3:o:cisco:ios:15.1\(1\)sy3:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(1\)sy4
cpe:2.3:o:cisco:ios:15.1\(1\)sy4:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(1\)sy5
cpe:2.3:o:cisco:ios:15.1\(1\)sy5:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(1\)sy6
cpe:2.3:o:cisco:ios:15.1\(1\)sy6:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sg
cpe:2.3:o:cisco:ios:15.1\(2\)sg:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sg1
cpe:2.3:o:cisco:ios:15.1\(2\)sg1:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sg2
cpe:2.3:o:cisco:ios:15.1\(2\)sg2:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sg3
cpe:2.3:o:cisco:ios:15.1\(2\)sg3:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sg4
cpe:2.3:o:cisco:ios:15.1\(2\)sg4:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sg5
cpe:2.3:o:cisco:ios:15.1\(2\)sg5:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sg6
cpe:2.3:o:cisco:ios:15.1\(2\)sg6:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sg7
cpe:2.3:o:cisco:ios:15.1\(2\)sg7:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sg8
cpe:2.3:o:cisco:ios:15.1\(2\)sg8:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy
cpe:2.3:o:cisco:ios:15.1\(2\)sy:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy1
cpe:2.3:o:cisco:ios:15.1\(2\)sy1:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy2
cpe:2.3:o:cisco:ios:15.1\(2\)sy2:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy3
cpe:2.3:o:cisco:ios:15.1\(2\)sy3:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy4
cpe:2.3:o:cisco:ios:15.1\(2\)sy4:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy4a
cpe:2.3:o:cisco:ios:15.1\(2\)sy4a:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy5
cpe:2.3:o:cisco:ios:15.1\(2\)sy5:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy6
cpe:2.3:o:cisco:ios:15.1\(2\)sy6:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy7
cpe:2.3:o:cisco:ios:15.1\(2\)sy7:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy8
cpe:2.3:o:cisco:ios:15.1\(2\)sy8:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy9
cpe:2.3:o:cisco:ios:15.1\(2\)sy9:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy10
cpe:2.3:o:cisco:ios:15.1\(2\)sy10:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy11
cpe:2.3:o:cisco:ios:15.1\(2\)sy11:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy12
cpe:2.3:o:cisco:ios:15.1\(2\)sy12:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy13
cpe:2.3:o:cisco:ios:15.1\(2\)sy13:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy14
cpe:2.3:o:cisco:ios:15.1\(2\)sy14:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy15
cpe:2.3:o:cisco:ios:15.1\(2\)sy15:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.1\(2\)sy16
cpe:2.3:o:cisco:ios:15.1\(2\)sy16:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)e
cpe:2.3:o:cisco:ios:15.2\(1\)e:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)e1
cpe:2.3:o:cisco:ios:15.2\(1\)e1:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)e2
cpe:2.3:o:cisco:ios:15.2\(1\)e2:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)e3
cpe:2.3:o:cisco:ios:15.2\(1\)e3:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)ey
cpe:2.3:o:cisco:ios:15.2\(1\)ey:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)s
cpe:2.3:o:cisco:ios:15.2\(1\)s:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)s1
cpe:2.3:o:cisco:ios:15.2\(1\)s1:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)s2
cpe:2.3:o:cisco:ios:15.2\(1\)s2:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)sy
cpe:2.3:o:cisco:ios:15.2\(1\)sy:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)sy0a
cpe:2.3:o:cisco:ios:15.2\(1\)sy0a:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)sy1
cpe:2.3:o:cisco:ios:15.2\(1\)sy1:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)sy1a
cpe:2.3:o:cisco:ios:15.2\(1\)sy1a:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)sy2
cpe:2.3:o:cisco:ios:15.2\(1\)sy2:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)sy3
cpe:2.3:o:cisco:ios:15.2\(1\)sy3:*:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>ios>>15.2\(1\)sy4
cpe:2.3:o:cisco:ios:15.2\(1\)sy4:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-476Primarypsirt@cisco.com
CWE ID: CWE-476
Type: Primary
Source: psirt@cisco.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isis-sGjyOUHXpsirt@cisco.com
Vendor Advisory
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isis-sGjyOUHXaf854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Hyperlink: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isis-sGjyOUHX
Source: psirt@cisco.com
Resource:
Vendor Advisory
Hyperlink: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isis-sGjyOUHX
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Vendor Advisory

Change History

0
Information is not available yet

Similar CVEs

80Records found
CVE-2023-20067
Matching Score-8
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-8
Assigner-Cisco Systems, Inc.
CVSS Score-7.4||HIGH
EPSS-0.06% / 18.45%
||
7 Day CHG~0.00%
Published-23 Mar, 2023 | 00:00
Updated-25 Oct, 2024 | 16:02
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco IOS XE Software for Wireless LAN Controllers HTTP Client Profiling Denial of Service Vulnerability

A vulnerability in the HTTP-based client profiling feature of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of received traffic. An attacker could exploit this vulnerability by sending crafted traffic through a wireless access point. A successful exploit could allow the attacker to cause CPU utilization to increase, which could result in a DoS condition on an affected device and could cause new wireless client associations to fail. Once the offending traffic stops, the affected system will return to an operational state and new client associations will succeed.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-ios_xeCisco IOS XE Software
CWE ID-CWE-770
Allocation of Resources Without Limits or Throttling
CVE-2021-1268
Matching Score-8
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-8
Assigner-Cisco Systems, Inc.
CVSS Score-7.4||HIGH
EPSS-0.12% / 32.37%
||
7 Day CHG~0.00%
Published-04 Feb, 2021 | 16:35
Updated-08 Nov, 2024 | 23:54
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco IOS XR Software IPv6 Flood Denial of Service Vulnerability

A vulnerability in the IPv6 protocol handling of the management interfaces of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause an IPv6 flood on the management interface network of an affected device. The vulnerability exists because the software incorrectly forwards IPv6 packets that have an IPv6 node-local multicast group address destination and are received on the management interfaces. An attacker could exploit this vulnerability by connecting to the same network as the management interfaces and injecting IPv6 packets that have an IPv6 node-local multicast group address destination. A successful exploit could allow the attacker to cause an IPv6 flood on the corresponding network. Depending on the number of Cisco IOS XR Software nodes on that network segment, exploitation could cause excessive network traffic, resulting in network degradation or a denial of service (DoS) condition.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-ncs_1001ios_xrncs_1002Cisco IOS XR Software
CWE ID-CWE-1076
Insufficient Adherence to Expected Conventions
CVE-2020-3577
Matching Score-8
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-8
Assigner-Cisco Systems, Inc.
CVSS Score-7.4||HIGH
EPSS-0.10% / 28.45%
||
7 Day CHG~0.00%
Published-21 Oct, 2020 | 18:40
Updated-13 Nov, 2024 | 17:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco Firepower Threat Defense Software Inline Pair/Passive Mode Denial of Service Vulnerability

A vulnerability in the ingress packet processing path of Cisco Firepower Threat Defense (FTD) Software for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to insufficient validation when Ethernet frames are processed. An attacker could exploit this vulnerability by sending malicious Ethernet frames through an affected device. A successful exploit could allow the attacker do either of the following: Fill the /ngfw partition on the device: A full /ngfw partition could result in administrators being unable to log in to the device (including logging in through the console port) or the device being unable to boot up correctly. Note: Manual intervention is required to recover from this situation. Customers are advised to contact the Cisco Technical Assistance Center (TAC) to help recover a device in this condition. Cause a process crash: The process crash would cause the device to reload. No manual intervention is necessary to recover the device after the reload.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-firepower_threat_defenseCisco Firepower Threat Defense Software
CWE ID-CWE-20
Improper Input Validation
CVE-2021-1308
Matching Score-8
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-8
Assigner-Cisco Systems, Inc.
CVSS Score-7.4||HIGH
EPSS-0.10% / 27.68%
||
7 Day CHG~0.00%
Published-08 Apr, 2021 | 04:05
Updated-08 Nov, 2024 | 23:29
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco Small Business RV Series Routers Link Layer Discovery Protocol Vulnerabilities

Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business RV Series Routers. An unauthenticated, adjacent attacker could execute arbitrary code or cause an affected router to leak system memory or reload. A memory leak or device reload would cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details section of this advisory. Note: LLDP is a Layer 2 protocol. To exploit these vulnerabilities, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-rv260_firmwarerv340_firmwarerv345prv345rv134w_firmwarerv160w_firmwarerv160_firmwarerv345p_firmwarerv260w_firmwarerv340w_firmwarerv132w_firmwarerv160wrv260rv260wrv340wrv132wrv260prv345_firmwarerv340rv260p_firmwarerv134wrv160Cisco Small Business RV Series Router Firmware
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE ID-CWE-401
Missing Release of Memory after Effective Lifetime
CVE-2021-1439
Matching Score-8
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-8
Assigner-Cisco Systems, Inc.
CVSS Score-7.4||HIGH
EPSS-0.11% / 29.46%
||
7 Day CHG~0.00%
Published-24 Mar, 2021 | 20:05
Updated-08 Nov, 2024 | 23:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco Aironet Access Points FlexConnect Multicast DNS Denial of Service Vulnerability

A vulnerability in the multicast DNS (mDNS) gateway feature of Cisco Aironet Series Access Points Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of incoming mDNS traffic. An attacker could exploit this vulnerability by sending a crafted mDNS packet to an affected device through a wireless network that is configured in FlexConnect local switching mode or through a wired network on a configured mDNS VLAN. A successful exploit could allow the attacker to cause the access point (AP) to reboot, resulting in a DoS condition.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-aironet_2800catalyst_9800_firmwareaironet_1800catalyst_iw6300aironet_1560aironet_3800aironet_access_point_softwarecatalyst_9800esw6300aironet_1540catalyst_91001100_integrated_services_routeraironet_4800Cisco Aironet Access Point Software (IOS XE Controller)
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2020-3511
Matching Score-8
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-8
Assigner-Cisco Systems, Inc.
CVSS Score-7.4||HIGH
EPSS-0.10% / 28.45%
||
7 Day CHG~0.00%
Published-24 Sep, 2020 | 17:51
Updated-13 Nov, 2024 | 18:00
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco IOS and IOS XE Software ISDN Q.931 Denial of Service Vulnerability

A vulnerability in the ISDN subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient input validation when the ISDN Q.931 messages are processed. An attacker could exploit this vulnerability by sending a malicious ISDN Q.931 message to an affected device. A successful exploit could allow the attacker to cause the process to crash, resulting in a reload of the affected device.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-asr1001-hx-rfasr1002-hx-rf4331\/k9-ws_integrated_services_router1100-6g_integrated_services_routerasr1002-x4331\/k9_integrated_services_router4351\/k9_integrated_services_router1160_integrated_services_router4351\/k9-ws_integrated_services_router1100-4gltena_integrated_services_router1109-2p_integrated_services_router1100_integrated_services_router1100-lte_integrated_services_router4461_integrated_services_routerasr1001-xasr_1000-xasr_1002csr1000vasr_10041109_integrated_services_router111x_integrated_services_router1120_integrated_services_router4351\/k9-rf_integrated_services_router4321\/k9-ws_integrated_services_routerasr1001-x-rf1100-4g_integrated_services_router1111x_integrated_services_routerasr1002-x-rfasr_10134321\/k9-rf_integrated_services_router1101-4p_integrated_services_router4431_integrated_services_routerasr1001-x-wsasr_1001asr1002-hx1100-4p_integrated_services_routerios_xeasr1001-hx1111x-8p_integrated_services_routerasr_10061100-8p_integrated_services_router1109-4p_integrated_services_routerasr1002-x-wsasr_1001-xasr1002-hx-ws1101_integrated_services_router1100-4gltegb_integrated_services_router4331\/k9-rf_integrated_services_routerasr_1002-x4321\/k9_integrated_services_router422_integrated_services_routerCisco IOS
CWE ID-CWE-20
Improper Input Validation
CVE-2025-20262
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-5||MEDIUM
EPSS-Not Assigned
Published-27 Aug, 2025 | 16:23
Updated-27 Aug, 2025 | 18:19
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco Nexus 3000 and 9000 Series Switches Protocol Independent Multicast Version 6 Denial of Service Vulnerability

A vulnerability in the Protocol Independent Multicast Version 6 (PIM6) feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, low-privileged, remote attacker to trigger a crash of the PIM6 process, resulting in a denial of service (DoS) condition. This vulnerability is due to improper processing of PIM6 ephemeral data queries. An attacker could exploit this vulnerability by sending a crafted ephemeral query to an affected device through one of the following methods: NX-API REST, NETCONF, RESTConf, gRPC, or Model Driven Telemetry. A successful exploit could allow the attacker to cause the PIM6 process to crash and restart, causing potential adjacency flaps and resulting in a DoS of the PIM6 and ephemeral query processes.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-Cisco NX-OS Software
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2004-0079
Matching Score-6
Assigner-MITRE Corporation
ShareView Details
Matching Score-6
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-2.27% / 83.98%
||
7 Day CHG~0.00%
Published-18 Mar, 2004 | 05:00
Updated-03 Apr, 2025 | 01:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.

Action-Not Available
Vendor-sco4dlitebluecoatneoterisstonesofttarantellasecurecomputingn/aAvaya LLCNovellSun Microsystems (Oracle Corporation)Symantec CorporationCisco Systems, Inc.Apple Inc.HP Inc.Check Point Software Technologies Ltd.Silicon Graphics, Inc.OpenBSDRed Hat, Inc.Dell Inc.FreeBSD FoundationOpenSSLVMware (Broadcom Inc.)
Product-wbemfirewall_services_moduleapplication_and_content_networking_softwareaaa_servers8700okena_stormwatchmac_os_xthreat_responseapache-based_web_serverpix_firewallpropacks8500provider-1call_managerciscoworks_common_management_foundationclientless_vpn_gateway_4400secure_content_acceleratorvsus8300stonebeat_fullclustergsx_serverfirewall-1access_registrarstonebeat_securityclustergss_4480_global_site_selectortarantella_enterprisestonegate_vpn_clientproxysgvpn-1mac_os_x_serverenterprise_linux_desktopmds_9000enterprise_linuxwebstaropenserverbsafe_ssl-jioswebnssg203css11000_content_services_switchopenssllinuxintuity_audixserverclustersg5openbsdsg208sg200cacheos_ca_sastonegateciscoworks_common_servicesgss_4490_global_site_selectorimanagerinstant_virtual_extranetedirectorysidewinderhp-uxconverged_communications_serverstonebeat_webclustercrypto_accelerator_4000speed_technologies_litespeed_web_serverfreebsdpix_firewall_softwarecontent_services_switch_11500css_secure_content_acceleratorn/a
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2010-3048
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-7.5||HIGH
EPSS-0.66% / 70.06%
||
7 Day CHG~0.00%
Published-16 Jan, 2020 | 17:15
Updated-15 Nov, 2024 | 17:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Cisco Unified Personal Communicator 7.0 (1.13056) does not free allocated memory for received data and does not perform validation if memory allocation is successful, causing a remote denial of service condition.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-unified_personal_communicatorUnified Personal Communicator
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2024-20266
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-5.3||MEDIUM
EPSS-0.09% / 27.11%
||
7 Day CHG~0.00%
Published-13 Mar, 2024 | 16:42
Updated-14 Aug, 2024 | 15:00
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A vulnerability in the DHCP version 4 (DHCPv4) server feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to trigger a crash of the dhcpd process, resulting in a denial of service (DoS) condition. This vulnerability exists because certain DHCPv4 messages are improperly validated when they are processed by an affected device. An attacker could exploit this vulnerability by sending a malformed DHCPv4 message to an affected device. A successful exploit could allow the attacker to cause a crash of the dhcpd process. While the dhcpd process is restarting, which may take approximately two minutes, DHCPv4 server services are unavailable on the affected device. This could temporarily prevent network access to clients that join the network during that time period and rely on the DHCPv4 server of the affected device. Notes: Only the dhcpd process crashes and eventually restarts automatically. The router does not reload. This vulnerability only applies to DHCPv4. DHCP version 6 (DHCPv6) is not affected.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-Cisco IOS XR Softwareios_xr_software
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2024-20436
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-0.72% / 71.57%
||
7 Day CHG+0.17%
Published-25 Sep, 2024 | 16:26
Updated-08 Oct, 2024 | 21:00
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service feature is enabled could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a null pointer dereference when accessing specific URLs. An attacker could exploit this vulnerability by sending crafted HTTP traffic to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, causing a DoS condition on the affected device.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-ios_xeCisco IOS XE Softwareios_xe
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2024-20446
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-0.32% / 54.50%
||
7 Day CHG~0.00%
Published-28 Aug, 2024 | 16:31
Updated-29 Aug, 2024 | 13:25
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco NX-OS Software DHCPv6 Relay Agent Denial of Service Vulnerability

A vulnerability in the DHCPv6 relay agent of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of specific fields in a DHCPv6 RELAY-REPLY message. An attacker could exploit this vulnerability by sending a crafted DHCPv6 packet to any IPv6 address that is configured on an affected device. A successful exploit could allow the attacker to cause the dhcp_snoop process to crash and restart multiple times, causing the affected device to reload and resulting in a DoS condition.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-Cisco NX-OS Softwarenx-os
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2024-20426
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-0.13% / 33.11%
||
7 Day CHG~0.00%
Published-23 Oct, 2024 | 17:46
Updated-05 Nov, 2024 | 19:43
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A vulnerability in the Internet Key Exchange version 2 (IKEv2) protocol for VPN termination of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted IKEv2 traffic to an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-firepower_threat_defense_softwareadaptive_security_appliance_softwareCisco Firepower Threat Defense SoftwareCisco Adaptive Security Appliance (ASA) Softwarefirepower_threat_defense_softwareadaptive_security_appliance_software
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2019-1922
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-5.3||MEDIUM
EPSS-0.78% / 72.79%
||
7 Day CHG~0.00%
Published-06 Jul, 2019 | 01:25
Updated-21 Nov, 2024 | 19:19
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco IP Phone 7800 and 8800 Series Session Initiation Protocol Denial of Service Vulnerability

A vulnerability in Cisco SIP IP Phone Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected phone. The vulnerability is due to insufficient validation of input Session Initiation Protocol (SIP) packets. An attacker could exploit this vulnerability by altering the SIP replies that are sent to the affected phone during the registration process. A successful exploit could allow the attacker to cause the phone to reboot and not complete the registration process.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-ip_phone_7821_firmwareip_phone_8841_firmwareip_phone_8865_firmwareip_phone_8841ip_conference_phone_7832ip_phone_8865ip_phone_8861ip_phone_7841_firmwareip_conference_phone_8832ip_phone_8845_firmwareip_phone_7841ip_phone_7811_firmwareip_conference_phone_7832_firmwareip_phone_8811ip_phone_8811_firmwareip_phone_7811ip_phone_7861ip_phone_8851ip_phone_8861_firmwareip_conference_phone_8832_firmwareip_phone_7861_firmwareip_phone_7821ip_phone_8845ip_phone_8851_firmwareCisco IP Phone 8800 Series Software
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2019-1900
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-7.5||HIGH
EPSS-0.27% / 50.01%
||
7 Day CHG~0.00%
Published-21 Aug, 2019 | 18:20
Updated-19 Nov, 2024 | 19:00
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco Integrated Management Controller Unauthenticated Denial of Service Vulnerability

A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to cause the web server process to crash, causing a denial of service (DoS) condition on an affected system. The vulnerability is due to insufficient validation of user-supplied input on the web interface. An attacker could exploit this vulnerability by submitting a crafted HTTP request to certain endpoints of the affected software. A successful exploit could allow an attacker to cause the web server to crash. Physical access to the device may be required for a restart.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-ucs_c125_m5ucs_s3260integrated_management_controller_supervisorucs_c4200unified_computing_systemCisco Unified Computing System (Management Software)
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2019-15258
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-6.5||MEDIUM
EPSS-0.46% / 63.26%
||
7 Day CHG~0.00%
Published-16 Oct, 2019 | 18:36
Updated-21 Nov, 2024 | 19:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco SPA100 Series Analog Telephone Adapters Web Management Interface Denial of Service Vulnerability

A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper validation of user-supplied requests to the web-based management interface. An attacker could exploit this vulnerability by sending a crafted request to the web-based management interface of an affected device. A successful exploit could allow the attacker to cause the device to stop responding, requiring manual intervention for recovery.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-spa112_firmwarespa122_firmwarespa112spa122Cisco SPA112 2-Port Phone Adapter
CWE ID-CWE-399
Not Available
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2019-12647
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-1.16% / 77.71%
||
7 Day CHG~0.00%
Published-25 Sep, 2019 | 20:05
Updated-19 Nov, 2024 | 18:56
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco IOS and IOS XE Software IP Ident Denial of Service Vulnerability

A vulnerability in the Ident protocol handler of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability exists because the affected software incorrectly handles memory structures, leading to a NULL pointer dereference. An attacker could exploit this vulnerability by opening a TCP connection to specific ports and sending traffic over that connection. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-asr_920-10sz-pdncs_4216asr_920-12cz-a4451-x43514431asr_900asr_920-24sz-im4221cloud_services_router_1000v1100asr_1002-hxasr_920-24sz-masr_10004321ios_xencs_4206asr_920-4sz-anetwork_convergence_system_520asr_920-12cz-dasr_1001-xasr_1001-hxasr_920-12sz-imasr_920-4sz-dasr_1002-xncs_4202ncs_4201asr_920-24tz-mCisco IOS
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2021-34737
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-5.8||MEDIUM
EPSS-0.38% / 58.51%
||
7 Day CHG~0.00%
Published-09 Sep, 2021 | 05:01
Updated-07 Nov, 2024 | 22:00
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco IOS XR Software DHCP Version 4 Server Denial of Service Vulnerability

A vulnerability in the DHCP version 4 (DHCPv4) server feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to trigger a crash of the dhcpd process, resulting in a denial of service (DoS) condition. This vulnerability exists because certain DHCPv4 messages are improperly validated when they are processed by an affected device. An attacker could exploit this vulnerability by sending a malformed DHCPv4 message to an affected device. A successful exploit could allow the attacker to cause a NULL pointer dereference, resulting in a crash of the dhcpd process. While the dhcpd process is restarting, which may take up to approximately two minutes, DHCPv4 server services are unavailable on the affected device. This could temporarily prevent network access to clients that join the network during that time period. Note: Only the dhcpd process crashes and eventually restarts automatically. The router does not reload.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-ncs_5001ncs_5002ncs540x-12z16g-sys-dasr_9010asr_9902ncs_5501-sencs_5516asr_9006ncs540x-12z16g-sys-aasr_9000v-v2ios_xrncs540x-acc-sysncs_5502-sencs540-acc-sysncs_5508asr_9903ncs_5501ncs540-28z4c-sys-dncs540-12z20g-sys-dncs_5011ios_xrv_9000asr_9001ncs540-28z4c-sys-ancs540-24z8q2c-sysncs540x-16z4g8q2c-aasr_9910asr_9906asr_9904asr_9912asr_9922ncs540-24z8q2c-mncs540-12z20g-sys-ancs_560-4ncs_560-7ncs540x-16z4g8q2c-dncs_5502asr_9901Cisco IOS XR Software
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2023-20233
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-4.3||MEDIUM
EPSS-0.13% / 33.11%
||
7 Day CHG~0.00%
Published-13 Sep, 2023 | 16:40
Updated-02 Aug, 2024 | 09:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A vulnerability in the Connectivity Fault Management (CFM) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to incorrect processing of invalid continuity check messages (CCMs). An attacker could exploit this vulnerability by sending crafted CCMs to an affected device. A successful exploit could allow the attacker to cause the CFM service to crash when a user displays information about maintenance end points (MEPs) for peer MEPs on an affected device.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-ios_xrCisco IOS XR Software
CWE ID-CWE-476
NULL Pointer Dereference
CWE ID-CWE-354
Improper Validation of Integrity Check Value
CVE-2021-1274
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-0.69% / 70.95%
||
7 Day CHG~0.00%
Published-20 Jan, 2021 | 19:56
Updated-12 Nov, 2024 | 20:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco SD-WAN Denial of Service Vulnerabilities

Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-vedge_100b_routervedge_cloud_routersd-wan_vbond_orchestratorvedge_5000_routervedge_100_routersd-wan_firmwareios_xe_sd-wanvedge_2000_routersd-wan_vsmart_controller_firmwarevedge_100wm_routercatalyst_sd-wan_managervedge_1000_routervedge_100m_routerCisco SD-WAN Solution
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2020-3517
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-1.51% / 80.45%
||
7 Day CHG~0.00%
Published-27 Aug, 2020 | 15:40
Updated-13 Nov, 2024 | 18:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco FXOS and NX-OS Software Cisco Fabric Services Denial of Service Vulnerability

A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated attacker to cause process crashes, which could result in a denial of service (DoS) condition on an affected device. The attack vector is configuration dependent and could be remote or adjacent. For more information about the attack vector, see the Details section of this advisory. The vulnerability is due to insufficient error handling when the affected software parses Cisco Fabric Services messages. An attacker could exploit this vulnerability by sending malicious Cisco Fabric Services messages to an affected device. A successful exploit could allow the attacker to cause a reload of an affected device, which could result in a DoS condition.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-firepower_9300nexus_93180lc-exfirepower_4150ucs_6300nexus_56128pnexus_9332pqnexus_3172tqnexus_93108tc-exnx-osnexus_3636c-rnexus_9508nexus_93120txfirepower_4110nexus_93128txnexus_9336pq_aci_spinenexus_6004firepower_4145nexus_3548-xlnexus_31128pqnexus_3132q-vnexus_9332cnexus_9364cmds_9200nexus_92348gc-xnexus_3172tq-32tnexus_9336c-fx2nexus_3164qnexus_3524-xnexus_3132c-znexus_31108tc-vnexus_5548pnexus_9348gc-fxpnexus_5648qnexus_3172nexus_9272qnexus_3464cmds_9700nexus_93216tc-fx2nexus_36180yc-rnexus_5672upnexus_93180yc-fxnexus_3264qfirepower_4140nexus_3432d-sucs_6454nexus_34180ycnexus_9000vnexus_31108pc-vnexus_5596upfirepower_4115nexus_3524nexus_3548mds_9500nexus_3132qnexus_3016nexus_9372pxucs_64108nexus_5696qnexus_92304qcnexus_92160yc-xucs_6248upfirepower_4125mds_9100nexus_9504nexus_3048nexus_9372tx-enexus_6001nexus_93108tc-fxnexus_93360yc-fx2nexus_3524-xlucs_6324nexus_9396txfirepower_4120nexus_7000nexus_92300ycnexus_3064nexus_3232cnexus_5548upnexus_9396pxucs_6296upnexus_5596tfirepower_extensible_operating_systemnexus_3264c-enexus_93240yc-fx2nexus_9372txnexus_5624qfirepower_4112nexus_3548-xnexus_3132q-xlnexus_3064-tnexus_3172tq-xlnexus_93180yc-exnexus_3408-snexus_9372px-enexus_9236cnexus_9516nexus_3172pq-xlnexus_7700Cisco NX-OS Software
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2020-3481
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-7.5||HIGH
EPSS-3.90% / 87.81%
||
7 Day CHG~0.00%
Published-20 Jul, 2020 | 17:45
Updated-13 Nov, 2024 | 18:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Clam AntiVirus (ClamAV) Software Null Pointer Dereference Vulnerability

A vulnerability in the EGG archive parsing module in Clam AntiVirus (ClamAV) Software versions 0.102.0 - 0.102.3 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a null pointer dereference. An attacker could exploit this vulnerability by sending a crafted EGG file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process crash, resulting in a denial of service condition.

Action-Not Available
Vendor-Debian GNU/LinuxFedora ProjectClamAVCanonical Ltd.Cisco Systems, Inc.
Product-ubuntu_linuxclamavdebian_linuxfedoraClamAV
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2020-3407
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-1.26% / 78.56%
||
7 Day CHG~0.00%
Published-24 Sep, 2020 | 18:02
Updated-13 Nov, 2024 | 17:55
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco IOS XE Software RESTCONF and NETCONF-YANG Access Control List Denial of Service Vulnerability

A vulnerability in the RESTCONF and NETCONF-YANG access control list (ACL) function of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload. The vulnerability is due to incorrect processing of the ACL that is tied to the RESTCONF or NETCONF-YANG feature. An attacker could exploit this vulnerability by accessing the device using RESTCONF or NETCONF-YANG. A successful exploit could allow an attacker to cause the device to reload, resulting in a denial of service (DoS) condition.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-catalyst_c9200l-48pxg-4x1100-6g_integrated_services_routercatalyst_c9407rcatalyst_c9300-48pws-c3650-24td4331_integrated_services_routercatalyst_c9500-16x4461_integrated_services_routercatalyst_c9200-24pasr_1000-xws-c3850catalyst_c9200l-48pxg-2ycatalyst_c9200l-48t-4g111x_integrated_services_routercatalyst_9800-lasr_1013catalyst_c9300l-48p-4xcatalyst_c9500-24y4ccatalyst_c9200l-24t-4gws-c3650-24psasr1001-hxcatalyst_9800-clws-c3650-48tqcatalyst_c9200l-48p-4gws-c3650-12x48uzws-c3850-48xs1160_integrated_services_routercatalyst_c9300l-24t-4g1100-lte_integrated_services_routercatalyst_c9200l-24pxg-2yws-c3850-24ucatalyst_9800-801109_integrated_services_routercatalyst_c9200l-24p-4xcatalyst_c9300l-24p-4xcatalyst_c9300l-48p-4gws-c3650-48pd1100-4g_integrated_services_router1111x_integrated_services_routercatalyst_c9300-48uxmcatalyst_9800-401101-4p_integrated_services_router1100-4p_integrated_services_routercatalyst_c9500-40xasr_1006ws-c3850-24xsasr1002-hx-wscatalyst_c9200-24tws-c3650-24pdm1101_integrated_services_router1100-4gltegb_integrated_services_router4451_integrated_services_routerws-c3650-48fqmws-c3850-48tcatalyst_c9200l-48p-4xcatalyst_c9410rcatalyst_c9300-24pasr1001-hx-rfws-c3650-24pdws-c3650-48fsws-c3850-48pws-c3850-24pcatalyst_c9300-48u1100-4gltena_integrated_services_router1100_integrated_services_routerws-c3650-8x24uqcatalyst_9800-l-cws-c3650-48tscatalyst_c9300-48tcatalyst_c9500-12qcatalyst_c9500-24qws-c3650-12x48urcatalyst_c9200-48tcatalyst_c9300-24sasr1002-x-rfws-c3650-12x48uqws-c3650-48tdasr_1001asr1002-hx4221_integrated_services_routercatalyst_c9404rws-c3850-12x48ucatalyst_c9300-24ucatalyst_c9200l-48t-4xws-c3650-48fdasr1002-x-wscatalyst_c9500-32casr_1002-xcatalyst_c9300l-24p-4gws-c3850-12scatalyst_c9500-32qcasr1002-hx-rfws-c3850-48ucatalyst_c9200l-24p-4gcatalyst_c9300-48sws-c3650-48fqws-c3850-48fws-c3850-24xucatalyst_c9300l-48t-4xws-c3650-48ps1109-2p_integrated_services_routerws-c3850-24tasr_1002catalyst_c9300l-24t-4xcatalyst_9800-l-fws-c3650-24tsasr_1004catalyst_c9200-48p1120_integrated_services_routercatalyst_c9300-48uncatalyst_c9200l-24t-4xasr1001-x-rfws-c3650-48pqcatalyst_c9300-24t4431_integrated_services_routercatalyst_c9200l-24pxg-4xasr1001-x-wscsr_1000vios_xecatalyst_c9300l-48t-4g1111x-8p_integrated_services_routercatalyst_c9500-48y4c1100-8p_integrated_services_routerws-c3850-24s1109-4p_integrated_services_routercatalyst_c9300-24uxasr_1001-xws-c3850-12xsCisco IOS XE Software
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2024-20339
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-0.78% / 72.70%
||
7 Day CHG~0.00%
Published-23 Oct, 2024 | 17:09
Updated-08 Aug, 2025 | 16:10
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco Firepower Threat Defense Software for Firepower 2100 Series TLS Denial of Service Vulnerability

A vulnerability in the TLS processing feature of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an issue that occurs when TLS traffic is processed. An attacker could exploit this vulnerability by sending certain TLS traffic over IPv4 through an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition and impacting traffic to and through the affected device.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-firepower_threat_defense_softwareCisco Firepower Threat Defense Softwarefirepower_threat_defense_software
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2019-12654
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-1.16% / 77.71%
||
7 Day CHG~0.00%
Published-25 Sep, 2019 | 20:16
Updated-19 Nov, 2024 | 18:55
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco IOS and IOS XE Software Session Initiation Protocol Denial of Service Vulnerability

A vulnerability in the common Session Initiation Protocol (SIP) library of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient sanity checks on an internal data structure. An attacker could exploit this vulnerability by sending a sequence of malicious SIP messages to an affected device. An exploit could allow the attacker to cause a NULL pointer dereference, resulting in a crash of the iosd process. This triggers a reload of the device.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-4451-x_integrated_services_router4321_integrated_services_router4431_integrated_services_routercloud_services_router_1000vasr_1002-hxasr_10001100_integrated_services_routerios_xe4221_integrated_services_routerintegrated_services_virtual_router4331_integrated_services_routerasr_1001-x4000_integrated_services_router1000_integrated_services_routerasr_1001-hxasr_1002-x4351_integrated_services_routerCisco IOS 15.0(1)XA2
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2022-20682
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-0.47% / 63.83%
||
7 Day CHG~0.00%
Published-15 Apr, 2022 | 14:16
Updated-06 Nov, 2024 | 16:25
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerability

A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to inadequate input validation of incoming CAPWAP packets encapsulating multicast DNS (mDNS) queries. An attacker could exploit this vulnerability by connecting to a wireless network and sending a crafted mDNS query, which would flow through and be processed by the wireless controller. A successful exploit could allow the attacker to cause the affected device to crash and reload, resulting in a DoS condition.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-ios_xeCisco IOS XE Software
CWE ID-CWE-690
Unchecked Return Value to NULL Pointer Dereference
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2018-0305
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-1.11% / 77.20%
||
7 Day CHG~0.00%
Published-21 Jun, 2018 | 11:00
Updated-29 Nov, 2024 | 14:58
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. The vulnerability exists because the affected software insufficiently validates Cisco Fabric Services packets. An attacker could exploit this vulnerability by sending a crafted Cisco Fabric Services packet to an affected device. A successful exploit could allow the attacker to force a NULL pointer dereference and cause a DoS condition. This vulnerability affects the following if configured to use Cisco Fabric Services: Firepower 4100 Series Next-Generation Firewalls, Firepower 9300 Security Appliance, MDS 9000 Series Multilayer Switches, Nexus 2000 Series Fabric Extenders, Nexus 3000 Series Switches, Nexus 3500 Platform Switches, Nexus 5500 Platform Switches, Nexus 5600 Platform Switches, Nexus 6000 Series Switches, Nexus 7000 Series Switches, Nexus 7700 Series Switches, Nexus 9000 Series Switches in standalone NX-OS mode, Nexus 9500 R-Series Line Cards and Fabric Modules, UCS 6100 Series Fabric Interconnects, UCS 6200 Series Fabric Interconnects, UCS 6300 Series Fabric Interconnects. Cisco Bug IDs: CSCvd69966, CSCve02435, CSCve04859, CSCve41590, CSCve41593, CSCve41601.

Action-Not Available
Vendor-n/aCisco Systems, Inc.
Product-nexus_9000nexus_7000_firmwarefirepower_9000_firmwareunified_computing_systemnexus_5000_firmwarenexus_5000nexus_9000_firmwarenexus_7000unified_computing_system_firmwarefirepower_9000Cisco FXOS and NX-OS unknown
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2022-20796
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-6.5||MEDIUM
EPSS-0.03% / 5.41%
||
7 Day CHG~0.00%
Published-04 May, 2022 | 17:06
Updated-06 Nov, 2024 | 16:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ClamAV Truncated File Denial of Service Vulnerability Affecting Cisco Products: April 2022

On May 4, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in Clam AntiVirus (ClamAV) versions 0.103.4, 0.103.5, 0.104.1, and 0.104.2 could allow an authenticated, local attacker to cause a denial of service condition on an affected device. For a description of this vulnerability, see the ClamAV blog.

Action-Not Available
Vendor-ClamAVDebian GNU/LinuxFedora ProjectCisco Systems, Inc.
Product-secure_endpointclamavdebian_linuxfedoraCisco AMP for Endpoints
CWE ID-CWE-822
Untrusted Pointer Dereference
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2022-20746
Matching Score-6
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-6
Assigner-Cisco Systems, Inc.
CVSS Score-8.6||HIGH
EPSS-0.91% / 74.91%
||
7 Day CHG~0.00%
Published-03 May, 2022 | 03:15
Updated-06 Nov, 2024 | 16:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cisco Firepower Threat Defense Software TCP Proxy Denial of Service Vulnerability

A vulnerability in the TCP proxy functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition. This vulnerability is due to improper handling of TCP flows. An attacker could exploit this vulnerability by sending a crafted stream of TCP traffic through an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

Action-Not Available
Vendor-Cisco Systems, Inc.
Product-firepower_threat_defenseCisco Firepower Threat Defense Software
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2024-39356
Matching Score-4
Assigner-Intel Corporation
ShareView Details
Matching Score-4
Assigner-Intel Corporation
CVSS Score-7.1||HIGH
EPSS-0.03% / 8.03%
||
7 Day CHG~0.00%
Published-12 Feb, 2025 | 21:20
Updated-18 Feb, 2025 | 18:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

NULL pointer dereference in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ WiFi software for Windows before version 23.80 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Action-Not Available
Vendor-n/a
Product-Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software for Windows
CWE ID-CWE-476
NULL Pointer Dereference
  • Previous
  • 1
  • 2
  • Next
Details not found