This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/h:cisco:ios:12.3b
Detail
VendorCiscoFirst view 2005-11-30
ProductIosLast view2015-02-15
Version12.3bTypeHardware
Edition 
Language 
Update 
 
CPE Productcpe:/h:cisco:ios

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
7.12015-02-15CVE-2015-0609NetworkMediumNone Requ...
4.32015-02-11CVE-2015-0610NetworkMediumNone Requ...
7.12015-02-11CVE-2015-0608NetworkMediumNone Requ...
7.82015-02-11CVE-2015-0592NetworkLowNone Requ...
7.82015-01-28CVE-2015-0586NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32014-05-16CVE-2014-3262NetworkMediumNone Requ...
52014-04-24CVE-2012-3946NetworkLowNone Requ...
42014-04-23CVE-2012-5427NetworkLowRequires ...
6.82014-04-23CVE-2012-5422NetworkLowRequires ...
5.42014-04-23CVE-2012-5044NetworkHighNone Requ...
4.62014-04-23CVE-2012-5037LocalLowRequires ...
6.42014-04-23CVE-2012-5032NetworkLowNone Requ...
6.82014-04-23CVE-2012-5017NetworkLowRequires ...
6.32014-04-23CVE-2012-5014NetworkMediumRequires ...
52014-04-23CVE-2012-4658NetworkLowNone Requ...
4.32014-04-23CVE-2012-4651NetworkMediumNone Requ...
4.32014-04-23CVE-2012-3918NetworkMediumNone Requ...
52014-04-04CVE-2014-2143NetworkLowNone Requ...
7.12014-03-20CVE-2014-2124NetworkMediumNone Requ...
5.42013-11-21CVE-2013-6693NetworkHighNone Requ...
6.82013-11-17CVE-2013-6686NetworkLowRequires ...
6.42013-11-13CVE-2013-5552NetworkLowNone Requ...
7.82012-09-26CVE-2012-3949NetworkLowNone Requ...
52011-10-21CVE-2011-2059NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
31% (9)CWE-399Resource Management Errors
17% (5)CWE-20Improper Input Validation
10% (3)CWE-362Race Condition
10% (3)CWE-264Permissions, Privileges, and Access Controls
6% (2)CWE-287Improper Authentication
Hide | Show 6 More...
%idName
6% (2)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
3% (1)CWE-310Cryptographic Issues
3% (1)CWE-200Information Exposure
3% (1)CWE-189Numeric Errors
3% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
3% (1)CWE-19Data Handling

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:5873Cisco IOS Multicast DoS Vulnerability
oval:org.mitre.oval:def:5665Cisco Systems Non-DOCSIS Platform Default DOCSIS SNMP Support Vulnerability
oval:org.mitre.oval:def:5714Cisco IOS 12.4 Malformed DLSw Message DoS Vulnerability
oval:org.mitre.oval:def:5867Cisco IOS HTTP Server Router Administration Script Injection Vulnerability
oval:org.mitre.oval:def:5477Cisco IOS (GSR device) Multicast DoS Vulnerability
Hide | Show 1 More...
idName
oval:org.mitre.oval:def:5889Cisco IOS Session Initiation Protocol Denial of Service Vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
76818Cisco IOS IPv6 Component Crafted Echo Request Packet Remote Information Discl...
70363Cisco IOS IPv6 Stack Neighbor Discovery Router Advertisement Message Saturati...
70351Cisco IOS UDP Crafted SIP REGISTER Message Remote DoS
70350Cisco IOS IPv6 TFTP Copy Remote DoS
70349Cisco IOS Certificate Map Change Public Key Cache Clearing Certificate Ban By...
Hide | Show 13 More...
idDescription
70348Cisco IOS CallManager Express (CME) SIP TRUNK Traffic Rate Burst Request Size...
70347Cisco IOS SCCP Telephony Control Application (STCAPP) Shared Line Multiple Ca...
70341Cisco IOS CallManager Express (CME) Extension Mobility Phone SNR Number Chang...
70340Cisco IOS H.323 gk_circuit_info_do_in_acf Function Call Saturation Memory Lea...
70339Cisco IOS IRC Traffic Initial Reload Corrupted Magic Value Remote DoS
51394Cisco IOS HTTP Server URL Strings Unspecified XSS
51393Cisco IOS HTTP Server /ping Script XSS
48738Cisco IOS Malformed Protocol Independent Multicast (PIM) Packet GSR Remote DoS
48737Cisco IOS Crafted Protocol Independent Multicast (PIM) Packet Handling Remote...
48716Cisco IOS SIP Packet Handling Unspecified Remote DoS (3802)
32683Cisco IOS Data-link Switching (DLSw) Capabilities Exchange Remote DoS
29034Cisco IOS DOCSIS Persistent Default SNMP Community String
21360Cisco IOS HTTP show buffers Arbitrary Script Insertion

OpenVAS Exploits

idDescription
2016-05-04Name : Cisco IOS Software and IOS XE Software LISP Denial of Service Vulnerability
File : nvt/gb_cisco_ios_Cisco-SA-20140514-CVE-2014-3262.nasl
2009-06-05Name : Ubuntu USN-707-1 (cupsys)
File : nvt/ubuntu_707_1.nasl
2009-01-20Name : Ubuntu USN-708-1 (hplip)
File : nvt/ubuntu_708_1.nasl

Snort® IPS/IDS

DateDescription
2014-01-10Cisco IOS HTTP service HTML injection attempt
RuleID : 17287 - Type : SERVER-WEBAPP - Revision : 10

Nessus® Vulnerability Scanner

idDescription
2014-11-14Name : The remote device is running a vulnerable IOS version.
File : cisco-sn-CVE-2014-3262-ios.nasl - Type : ACT_GATHER_INFO
2014-11-14Name : The remote device is running a vulnerable IOS XE version.
File : cisco-sn-CVE-2014-3262-iosxe.nasl - Type : ACT_GATHER_INFO
2014-07-02Name : The remote device is missing a vendor-supplied security patch.
File : cisco_ios_CSCty73682.nasl - Type : ACT_GATHER_INFO
2014-04-28Name : The remote device is missing a vendor-supplied security patch.
File : cisco_ios_CSCun31021.nasl - Type : ACT_GATHER_INFO
2013-07-08Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20120926-cucm.nasl - Type : ACT_GATHER_INFO
Hide | Show 8 More...
idDescription
2012-09-28Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20120926-sip.nasl - Type : ACT_GATHER_INFO
2012-01-11Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sr-20090114-http.nasl - Type : ACT_GATHER_INFO
2012-01-10Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20060920-docsis.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20051201-httphttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20070110-dlswhttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-multicasthttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-siphttp.nasl - Type : ACT_GATHER_INFO
2007-01-17Name : The remote router can be crashed remotely.
File : CSCsf28840.nasl - Type : ACT_GATHER_INFO