This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/o:cisco:ios:12.3(7)xr3
Detail
VendorCiscoFirst view 2005-11-30
ProductIosLast view2019-09-25
Version12.3(7)xr3TypeOs
Edition 
Language 
Update 
 
CPE Productcpe:/o:cisco:ios

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
7.82019-09-25CVE-2019-12655NetworkLowNone Requ...
7.22019-05-13CVE-2019-1649LocalLowNone Requ...
2.12017-10-19CVE-2017-12289LocalLowNone Requ...
102017-09-28CVE-2017-12240NetworkLowNone Requ...
4.32017-08-07CVE-2017-6770Adjacent ...MediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
6.82017-08-02CVE-2012-5030NetworkLowRequires ...
92017-07-17CVE-2017-6743NetworkLowRequires ...
92017-07-17CVE-2017-6736NetworkLowRequires ...
7.82016-10-05CVE-2016-6384NetworkLowNone Requ...
8.32016-10-05CVE-2016-6380NetworkMediumNone Requ...
4.32016-09-22CVE-2014-2146NetworkMediumNone Requ...
52016-09-18CVE-2016-6415NetworkLowNone Requ...
4.32016-09-18CVE-2016-6403NetworkMediumNone Requ...
52016-05-29CVE-2016-1409NetworkLowNone Requ...
7.12015-02-15CVE-2015-0609NetworkMediumNone Requ...
4.32015-02-11CVE-2015-0610NetworkMediumNone Requ...
7.12015-02-11CVE-2015-0608NetworkMediumNone Requ...
7.82015-02-11CVE-2015-0592NetworkLowNone Requ...
7.82015-01-28CVE-2015-0586NetworkLowNone Requ...
4.32014-05-16CVE-2014-3262NetworkMediumNone Requ...
52014-04-24CVE-2012-3946NetworkLowNone Requ...
42014-04-23CVE-2012-5427NetworkLowRequires ...
6.82014-04-23CVE-2012-5422NetworkLowRequires ...
5.42014-04-23CVE-2012-5044NetworkHighNone Requ...

CWE : Common Weakness Enumeration

%idName
28% (15)CWE-399Resource Management Errors
19% (10)CWE-20Improper Input Validation
11% (6)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
7% (4)CWE-362Race Condition
7% (4)CWE-264Permissions, Privileges, and Access Controls
Hide | Show 8 More...
%idName
5% (3)CWE-200Information Exposure
3% (2)CWE-310Cryptographic Issues
3% (2)CWE-287Improper Authentication
3% (2)CWE-16Configuration
1% (1)CWE-284Access Control (Authorization) Issues
1% (1)CWE-269Improper Privilege Management
1% (1)CWE-189Numeric Errors
1% (1)CWE-120Buffer Copy without Checking Size of Input ('Classic Buffer Overflo...

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:5444Cisco IOS File Transfer DoS Vulnerability
oval:org.mitre.oval:def:5665Cisco Systems Non-DOCSIS Platform Default DOCSIS SNMP Support Vulnerability
oval:org.mitre.oval:def:5714Cisco IOS 12.4 Malformed DLSw Message DoS Vulnerability
oval:org.mitre.oval:def:5867Cisco IOS HTTP Server Router Administration Script Injection Vulnerability
oval:org.mitre.oval:def:5036Cisco IOS FTP Server Authentication Bypass Vulnerability
Hide | Show 2 More...
idName
oval:org.mitre.oval:def:6340TCP/IP Zero Window Size Vulnerability
oval:org.mitre.oval:def:18890CRITICAL PATCH UPDATE JULY 2012

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
76818Cisco IOS IPv6 Component Crafted Echo Request Packet Remote Information Discl...
74612Cisco IOS Neighbor Discovery (ND) Protocol Fragmented IPv6 Packet Router Adve...
70363Cisco IOS IPv6 Stack Neighbor Discovery Router Advertisement Message Saturati...
70351Cisco IOS UDP Crafted SIP REGISTER Message Remote DoS
70350Cisco IOS IPv6 TFTP Copy Remote DoS
Hide | Show 20 More...
idDescription
70349Cisco IOS Certificate Map Change Public Key Cache Clearing Certificate Ban By...
70348Cisco IOS CallManager Express (CME) SIP TRUNK Traffic Rate Burst Request Size...
70347Cisco IOS SCCP Telephony Control Application (STCAPP) Shared Line Multiple Ca...
70341Cisco IOS CallManager Express (CME) Extension Mobility Phone SNR Number Chang...
70340Cisco IOS H.323 gk_circuit_info_do_in_acf Function Call Saturation Memory Lea...
70339Cisco IOS IRC Traffic Initial Reload Corrupted Magic Value Remote DoS
62144F5 Multiple Products TCP/IP Implementation Queue Connection Saturation TCP St...
61133Citrix Multiple Products TCP/IP Implementation Queue Connection Saturation TC...
59482Blue Coat Multiple Products TCP/IP Implementation Queue Connection Saturation...
58614McAfee Email and Web Security Appliance TCP/IP Implementation Queue Connectio...
58321Check Point Multiple Products TCP/IP Implementation Queue Connection Saturati...
58189Yamaha RT Series Routers TCP/IP Implementation Queue Connection Saturation TC...
57993Solaris TCP/IP Implementation Queue Connection Saturation TCP State Table Rem...
57795Microsoft Windows TCP/IP Implementation Queue Connection Saturation TCP State...
57794Multiple BSD TCP/IP Implementation Queue Connection Saturation TCP State Tabl...
57793Multiple Linux TCP/IP Implementation Queue Connection Saturation TCP State Ta...
50286Cisco TCP/IP Implementation Queue Connection Saturation TCP State Table Remot...
37935Cisco IOS Line Printer Daemon (LPD) Remote Overflow
35335Cisco IOS FTP Server Unspecified File Transfer DoS
35334Cisco IOS FTP Server User Credential Handling Remote Overflow

OpenVAS Exploits

idDescription
2016-05-04Name : Cisco IOS Software and IOS XE Software LISP Denial of Service Vulnerability
File : nvt/gb_cisco_ios_Cisco-SA-20140514-CVE-2014-3262.nasl
2009-09-10Name : Microsoft Windows TCP/IP Remote Code Execution Vulnerability (967723)
File : nvt/secpod_ms09-048.nasl
2008-08-22Name : Cisco IOS FTP Server Authentication Bypass Vulnerability
File : nvt/cisco_ios_ftp_server_auth_bypass.nasl

Snort® IPS/IDS

DateDescription
2014-01-10multiple operating systems DHCP option overflow attempt
RuleID : 7196 - Type : OS-OTHER - Revision : 12
2016-09-29Cisco IOS malformed H.450 PER data out of bounds read attempt
RuleID : 40298 - Type : PROTOCOL-VOIP - Revision : 1
2016-10-10Cisco IOS Group-Prime SHA memory disclosure attempt
RuleID : 40222-community - Type : SERVER-OTHER - Revision : 5
2016-09-16Cisco IOS Group-Prime SHA memory disclosure attempt
RuleID : 40222 - Type : SERVER-OTHER - Revision : 5
2016-10-10Cisco IOS Group-Prime MD5 memory disclosure attempt
RuleID : 40221-community - Type : SERVER-OTHER - Revision : 5
Hide | Show 10 More...
DateDescription
2016-09-16Cisco IOS Group-Prime MD5 memory disclosure attempt
RuleID : 40221 - Type : SERVER-OTHER - Revision : 5
2016-10-10Cisco IOS Group-Prime memory disclosure exfiltration attempt
RuleID : 40220-community - Type : SERVER-OTHER - Revision : 6
2016-09-16Cisco IOS Group-Prime memory disclosure exfiltration attempt
RuleID : 40220 - Type : SERVER-OTHER - Revision : 6
2016-05-27Cisco IOS NX invalid ICMPv6 neighbor discovery hop limit denial of service at...
RuleID : 39065 - Type : SERVER-OTHER - Revision : 1
2018-10-17Multiple Products FTP MKD buffer overflow attempt
RuleID : 23055-community - Type : PROTOCOL-FTP - Revision : 10
2014-01-10Multiple Products FTP MKD buffer overflow attempt
RuleID : 23055 - Type : PROTOCOL-FTP - Revision : 10
2014-01-10Cisco IOS HTTP service HTML injection attempt
RuleID : 17287 - Type : SERVER-WEBAPP - Revision : 10
2014-01-10Microsoft Windows TCP stack zero window size exploit attempt
RuleID : 16294 - Type : OS-WINDOWS - Revision : 15
2014-01-10TCP window closed before receiving data
RuleID : 15912 - Type : OS-WINDOWS - Revision : 9
2014-01-10oversized sysName set request
RuleID : 12712 - Type : PROTOCOL-SNMP - Revision : 5

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2018-04-10Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20160928-dns-ios.nasl - Type : ACT_GATHER_INFO
2018-04-10Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20160928-dns-iosxe.nasl - Type : ACT_GATHER_INFO
2017-10-02Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20170927-dhcp-ios.nasl - Type : ACT_GATHER_INFO
2017-07-07Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20170629-snmp-ios.nasl - Type : ACT_GATHER_INFO
2017-07-07Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20170629-snmp-iosxe.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2017-01-26Name : A remote device is affected by an information disclosure vulnerability.
File : cisco_ikev1_info_disclosure.nasl - Type : ACT_ATTACK
2016-09-27Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20160916-ikev1-ios.nasl - Type : ACT_GATHER_INFO
2016-09-27Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20160916-ikev1-iosxe.nasl - Type : ACT_GATHER_INFO
2016-09-27Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20160916-ikev1-iosxr.nasl - Type : ACT_GATHER_INFO
2016-06-27Name : The remote device is missing a vendor-supplied security patch.
File : cisco-CSCun94946-ios.nasl - Type : ACT_GATHER_INFO
2016-06-27Name : The remote device is missing a vendor-supplied security patch.
File : cisco-CSCun96847-iosxe.nasl - Type : ACT_GATHER_INFO
2016-06-22Name : The remote device is affected by multiple vulnerabilities.
File : juniper_jsa10749.nasl - Type : ACT_GATHER_INFO
2014-11-14Name : The remote device is running a vulnerable IOS version.
File : cisco-sn-CVE-2014-3262-ios.nasl - Type : ACT_GATHER_INFO
2014-11-14Name : The remote device is running a vulnerable IOS XE version.
File : cisco-sn-CVE-2014-3262-iosxe.nasl - Type : ACT_GATHER_INFO
2014-10-10Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL10509.nasl - Type : ACT_GATHER_INFO
2014-07-02Name : The remote device is missing a vendor-supplied security patch.
File : cisco_ios_CSCty73682.nasl - Type : ACT_GATHER_INFO
2014-04-28Name : The remote device is missing a vendor-supplied security patch.
File : cisco_ios_CSCun31021.nasl - Type : ACT_GATHER_INFO
2013-04-10Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20130327-nat.nasl - Type : ACT_GATHER_INFO
2012-09-28Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20120926-dhcpv6.nasl - Type : ACT_GATHER_INFO
2012-09-28Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20120926-ios-ips.nasl - Type : ACT_GATHER_INFO
2012-08-17Name : The remote device is missing a vendor-supplied security patch.
File : cisco_ios_CSCtc12426.nasl - Type : ACT_GATHER_INFO
2012-04-02Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20120328-ike.nasl - Type : ACT_GATHER_INFO
2012-04-02Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20120328-msdp.nasl - Type : ACT_GATHER_INFO
2012-04-02Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20120328-pai.nasl - Type : ACT_GATHER_INFO
2012-01-10Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sr-20071010-lpd.nasl - Type : ACT_GATHER_INFO