This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/h:cisco:ios:12.2sx |
| Detail | |||
|---|---|---|---|
| Vendor | Cisco | First view | 2003-08-27 |
| Product | Ios | Last view | 2016-09-22 |
| Version | 12.2sx | Type | Hardware |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/h:cisco:ios | ||
Activity : Overall
Related : CVE
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 4.3 | 2016-09-22 | CVE-2014-2146 | Network | Medium | None Requ... | |
| 4.3 | 2016-09-18 | CVE-2016-6403 | Network | Medium | None Requ... | |
| 7.1 | 2015-02-15 | CVE-2015-0609 | Network | Medium | None Requ... | |
| 4.3 | 2015-02-11 | CVE-2015-0610 | Network | Medium | None Requ... | |
| 7.1 | 2015-02-11 | CVE-2015-0608 | Network | Medium | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 7.8 | 2015-02-11 | CVE-2015-0592 | Network | Low | None Requ... | |
| 7.8 | 2015-01-28 | CVE-2015-0586 | Network | Low | None Requ... | |
| 6.1 | 2014-10-25 | CVE-2014-3409 | Adjacent ... | Low | None Requ... | |
| 4.3 | 2014-05-16 | CVE-2014-3262 | Network | Medium | None Requ... | |
| 5 | 2014-04-24 | CVE-2012-3946 | Network | Low | None Requ... | |
| 4 | 2014-04-23 | CVE-2012-5427 | Network | Low | Requires ... | |
| 6.8 | 2014-04-23 | CVE-2012-5422 | Network | Low | Requires ... | |
| 5.4 | 2014-04-23 | CVE-2012-5044 | Network | High | None Requ... | |
| 4.3 | 2014-04-23 | CVE-2012-5039 | Network | Medium | None Requ... | |
| 4.6 | 2014-04-23 | CVE-2012-5037 | Local | Low | Requires ... | |
| 6.4 | 2014-04-23 | CVE-2012-5032 | Network | Low | None Requ... | |
| 6.8 | 2014-04-23 | CVE-2012-5017 | Network | Low | Requires ... | |
| 6.3 | 2014-04-23 | CVE-2012-5014 | Network | Medium | Requires ... | |
| 5 | 2014-04-23 | CVE-2012-4658 | Network | Low | None Requ... | |
| 4.3 | 2014-04-23 | CVE-2012-4651 | Network | Medium | None Requ... | |
| 4.3 | 2014-04-23 | CVE-2012-3918 | Network | Medium | None Requ... | |
| 5 | 2014-04-04 | CVE-2014-2143 | Network | Low | None Requ... | |
| 7.1 | 2014-03-20 | CVE-2014-2124 | Network | Medium | None Requ... | |
| 5.4 | 2013-11-21 | CVE-2013-6693 | Network | High | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 40% (14) | CWE-399 | Resource Management Errors |
| 17% (6) | CWE-20 | Improper Input Validation |
| 8% (3) | CWE-362 | Race Condition |
| 8% (3) | CWE-264 | Permissions, Privileges, and Access Controls |
| 5% (2) | CWE-287 | Improper Authentication |
| % | id | Name |
|---|---|---|
| 5% (2) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 2% (1) | CWE-310 | Cryptographic Issues |
| 2% (1) | CWE-200 | Information Exposure |
| 2% (1) | CWE-189 | Numeric Errors |
| 2% (1) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 2% (1) | CWE-19 | Data Handling |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:5598 | Cisco IOS Virtual Private Dial-up Network (VPDN) Denial of Service (DoS) Vuln... |
| oval:org.mitre.oval:def:5873 | Cisco IOS Multicast DoS Vulnerability |
| oval:org.mitre.oval:def:5665 | Cisco Systems Non-DOCSIS Platform Default DOCSIS SNMP Support Vulnerability |
| oval:org.mitre.oval:def:5714 | Cisco IOS 12.4 Malformed DLSw Message DoS Vulnerability |
| oval:org.mitre.oval:def:5867 | Cisco IOS HTTP Server Router Administration Script Injection Vulnerability |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:5477 | Cisco IOS (GSR device) Multicast DoS Vulnerability |
| oval:org.mitre.oval:def:5287 | Cisco IOS Virtual Private Dial-up Network (VPDN) PPTP Session Termination Mem... |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 76818 | Cisco IOS IPv6 Component Crafted Echo Request Packet Remote Information Discl... |
| 70363 | Cisco IOS IPv6 Stack Neighbor Discovery Router Advertisement Message Saturati... |
| 70351 | Cisco IOS UDP Crafted SIP REGISTER Message Remote DoS |
| 70350 | Cisco IOS IPv6 TFTP Copy Remote DoS |
| 70349 | Cisco IOS Certificate Map Change Public Key Cache Clearing Certificate Ban By... |
| id | Description |
|---|---|
| 70348 | Cisco IOS CallManager Express (CME) SIP TRUNK Traffic Rate Burst Request Size... |
| 70347 | Cisco IOS SCCP Telephony Control Application (STCAPP) Shared Line Multiple Ca... |
| 70341 | Cisco IOS CallManager Express (CME) Extension Mobility Phone SNR Number Chang... |
| 70340 | Cisco IOS H.323 gk_circuit_info_do_in_acf Function Call Saturation Memory Lea... |
| 70339 | Cisco IOS IRC Traffic Initial Reload Corrupted Magic Value Remote DoS |
| 53136 | Cisco IOS Multiple Functionality Crafted TCP Packet Sequence Remote DoS |
| 53132 | Cisco IOS SCP Server Role-based CLI Access Attached CLI View Remote File Mani... |
| 51394 | Cisco IOS HTTP Server URL Strings Unspecified XSS |
| 51393 | Cisco IOS HTTP Server /ping Script XSS |
| 48738 | Cisco IOS Malformed Protocol Independent Multicast (PIM) Packet GSR Remote DoS |
| 48737 | Cisco IOS Crafted Protocol Independent Multicast (PIM) Packet Handling Remote... |
| 43795 | Cisco IOS PPTP Session Termination Memory Exhaustion DoS |
| 43794 | Cisco IOS PPTP Session Termination Virtual Access Interface (IDB) Exhaustion DoS |
| 32683 | Cisco IOS Data-link Switching (DLSw) Capabilities Exchange Remote DoS |
| 29034 | Cisco IOS DOCSIS Persistent Default SNMP Community String |
| 21360 | Cisco IOS HTTP show buffers Arbitrary Script Insertion |
| 9265 | Cisco IOS Telnet Service DoS |
| 2342 | Cisco IOS Long HTTP GET Request Overflow |
OpenVAS Exploits
| id | Description |
|---|---|
| 2016-05-04 | Name : Cisco IOS Software and IOS XE Software LISP Denial of Service Vulnerability File : nvt/gb_cisco_ios_Cisco-SA-20140514-CVE-2014-3262.nasl |
| 2009-06-05 | Name : Ubuntu USN-707-1 (cupsys) File : nvt/ubuntu_707_1.nasl |
| 2009-06-05 | Name : Ubuntu USN-743-1 (gs-gpl) File : nvt/ubuntu_743_1.nasl |
| 2009-06-05 | Name : Ubuntu USN-744-1 (lcms) File : nvt/ubuntu_744_1.nasl |
| 2009-01-20 | Name : Ubuntu USN-708-1 (hplip) File : nvt/ubuntu_708_1.nasl |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | Cisco IOS HTTP service HTML injection attempt RuleID : 17287 - Type : SERVER-WEBAPP - Revision : 10 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2016-06-27 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-CSCun94946-ios.nasl - Type : ACT_GATHER_INFO |
| 2016-06-27 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-CSCun96847-iosxe.nasl - Type : ACT_GATHER_INFO |
| 2014-11-14 | Name : The remote device is running a vulnerable IOS version. File : cisco-sn-CVE-2014-3262-ios.nasl - Type : ACT_GATHER_INFO |
| 2014-11-14 | Name : The remote device is running a vulnerable IOS XE version. File : cisco-sn-CVE-2014-3262-iosxe.nasl - Type : ACT_GATHER_INFO |
| 2014-11-07 | Name : The remote Cisco device is affected by a denial of service vulnerability. File : cisco-sn-CSCuq93406-ios.nasl - Type : ACT_GATHER_INFO |
| id | Description |
|---|---|
| 2014-11-07 | Name : The remote Cisco device is affected by a denial of service vulnerability. File : cisco-sn-CSCuq93406-iosxe.nasl - Type : ACT_GATHER_INFO |
| 2014-07-02 | Name : The remote device is missing a vendor-supplied security patch. File : cisco_ios_CSCty73682.nasl - Type : ACT_GATHER_INFO |
| 2014-04-28 | Name : The remote device is missing a vendor-supplied security patch. File : cisco_ios_CSCun31021.nasl - Type : ACT_GATHER_INFO |
| 2013-07-08 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20120926-cucm.nasl - Type : ACT_GATHER_INFO |
| 2012-09-28 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20120926-sip.nasl - Type : ACT_GATHER_INFO |
| 2012-01-11 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sr-20090114-http.nasl - Type : ACT_GATHER_INFO |
| 2012-01-10 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sn-20030730-ios-2gb-get.nasl - Type : ACT_GATHER_INFO |
| 2012-01-10 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20060920-docsis.nasl - Type : ACT_GATHER_INFO |
| 2010-09-01 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20040827-telnethttp.nasl - Type : ACT_GATHER_INFO |
| 2010-09-01 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20051201-httphttp.nasl - Type : ACT_GATHER_INFO |
| 2010-09-01 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20070110-dlswhttp.nasl - Type : ACT_GATHER_INFO |
| 2010-09-01 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20080326-pptphttp.nasl - Type : ACT_GATHER_INFO |
| 2010-09-01 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20080924-multicasthttp.nasl - Type : ACT_GATHER_INFO |
| 2010-09-01 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20090325-scphttp.nasl - Type : ACT_GATHER_INFO |
| 2010-09-01 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20090325-tcphttp.nasl - Type : ACT_GATHER_INFO |
| 2007-01-17 | Name : The remote router can be crashed remotely. File : CSCsf28840.nasl - Type : ACT_GATHER_INFO |
| 2004-11-04 | Name : The remote device is missing a vendor-supplied security patch. File : CSCef46191.nasl - Type : ACT_GATHER_INFO |
