Summary
| Detail | |||
|---|---|---|---|
| Vendor | Cisco | First view | 2014-10-25 |
| Product | Ios Xe | Last view | 2025-05-07 |
| Version | 3.10.4s | Type | Os |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:o:cisco:ios_xe | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 8.6 | 2025-05-07 | CVE-2025-20154 | A vulnerability in the Two-Way Active Measurement Protocol (TWAMP) server feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. For Cisco IOS XR Software, this vulnerability could cause the ipsla_ippm_server process to reload unexpectedly if debugs are enabled. This vulnerability is due to out-of-bounds array access when processing specially crafted TWAMP control packets. An attacker could exploit this vulnerability by sending crafted TWAMP control packets to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Note: For Cisco IOS XR Software, only the ipsla_ippm_server process reloads unexpectedly and only when debugs are enabled. The vulnerability details for Cisco IOS XR Software are as follows: Security Impact Rating (SIR): Low CVSS Base Score: 3.7 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L |
| 7.7 | 2025-02-05 | CVE-2025-20175 | A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMP v2c or earlier, the attacker must know a valid read-write or read-only SNMP community string for the affected system. To exploit this vulnerability through SNMP v3, the attacker must have valid SNMP user credentials for the affected system. |
| 0 | 2025-02-05 | CVE-2025-20173 | A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMP v2c or earlier, the attacker must know a valid read-write or read-only SNMP community string for the affected system. To exploit this vulnerability through SNMP v3, the attacker must have valid SNMP user credentials for the affected system. |
| 0 | 2025-02-05 | CVE-2025-20172 | A vulnerability in the SNMP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device. For Cisco IOS and IOS XE Software, a successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. For Cisco IOS XR Software, a successful exploit could allow the attacker to cause the SNMP process to restart, resulting in an interrupted SNMP response from an affected device. Devices that are running Cisco IOS XR Software will not reload. This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMP v2c or earlier, the attacker must know a valid read-write or read-only SNMP community string for the affected system. To exploit this vulnerability through SNMP v3, the attacker must have valid SNMP user credentials for the affected system. |
| 0 | 2025-02-05 | CVE-2025-20171 | A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMP v2c or earlier, the attacker must know a valid read-write or read-only SNMP community string for the affected system. To exploit this vulnerability through SNMP v3, the attacker must have valid SNMP user credentials for the affected system. |
| 7.7 | 2025-02-05 | CVE-2025-20170 | A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMP v2c or earlier, the attacker must know a valid read-write or read-only SNMP community string for the affected system. To exploit this vulnerability through SNMP v3, the attacker must have valid SNMP user credentials for the affected system. |
| 7.7 | 2025-02-05 | CVE-2025-20169 | A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMP v2c or earlier, the attacker must know a valid read-write or read-only SNMP community string for the affected system. To exploit this vulnerability through SNMP v3, the attacker must have valid SNMP user credentials for the affected system. |
| 7.5 | 2024-09-25 | CVE-2024-20436 | A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service feature is enabled could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a null pointer dereference when accessing specific URLs. An attacker could exploit this vulnerability by sending crafted HTTP traffic to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, causing a DoS condition on the affected device. |
| 7.5 | 2024-09-25 | CVE-2024-20433 | A vulnerability in the Resource Reservation Protocol (RSVP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to a buffer overflow when processing crafted RSVP packets. An attacker could exploit this vulnerability by sending RSVP traffic to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. |
| 6.5 | 2024-09-25 | CVE-2024-20414 | A vulnerability in the web UI feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system through the web UI. This vulnerability is due to incorrectly accepting configuration changes through the HTTP GET method. An attacker could exploit this vulnerability by persuading a currently authenticated administrator to follow a crafted link. A successful exploit could allow the attacker to change the configuration of the affected device. |
| 7.4 | 2024-03-27 | CVE-2024-20354 | A vulnerability in the handling of encrypted wireless frames of Cisco Aironet Access Point (AP) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on the affected device. This vulnerability is due to incomplete cleanup of resources when dropping certain malformed frames. An attacker could exploit this vulnerability by connecting as a wireless client to an affected AP and sending specific malformed frames over the wireless connection. A successful exploit could allow the attacker to cause degradation of service to other clients, which could potentially lead to a complete DoS condition. |
| 0 | 2024-03-27 | CVE-2024-20312 | A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation when parsing an ingress IS-IS packet. An attacker could exploit this vulnerability by sending a crafted IS-IS packet to an affected device after forming an adjacency. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. Note: The IS-IS protocol is a routing protocol. To exploit this vulnerability, an attacker must be Layer 2-adjacent to the affected device and have formed an adjacency. |
| 7.5 | 2024-03-27 | CVE-2024-20311 | A vulnerability in the Locator ID Separation Protocol (LISP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability is due to the incorrect handling of LISP packets. An attacker could exploit this vulnerability by sending a crafted LISP packet to an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition. Note: This vulnerability could be exploited over either IPv4 or IPv6 transport. |
| 5.5 | 2024-03-27 | CVE-2024-20309 | A vulnerability in auxiliary asynchronous port (AUX) functions of Cisco IOS XE Software could allow an authenticated, local attacker to cause an affected device to reload or stop responding. This vulnerability is due to the incorrect handling of specific ingress traffic when flow control hardware is enabled on the AUX port. An attacker could exploit this vulnerability by reverse telnetting to the AUX port and sending specific data after connecting. A successful exploit could allow the attacker to cause the device to reset or stop responding, resulting in a denial of service (DoS) condition. |
| 7.5 | 2024-03-27 | CVE-2024-20308 | A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a heap underflow, resulting in an affected device reloading. This vulnerability exists because crafted, fragmented IKEv1 packets are not properly reassembled. An attacker could exploit this vulnerability by sending crafted UDP packets to an affected system. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. Note: Only traffic that is directed to the affected system can be used to exploit this vulnerability. This vulnerability can be triggered by IPv4 and IPv6 traffic.. |
| 8.6 | 2024-03-27 | CVE-2024-20271 | A vulnerability in the IP packet processing of Cisco Access Point (AP) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of certain IPv4 packets. An attacker could exploit this vulnerability by sending a crafted IPv4 packet either to or through an affected device. A successful exploit could allow the attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. To successfully exploit this vulnerability, the attacker does not need to be associated with the affected AP. This vulnerability cannot be exploited by sending IPv6 packets. |
| 5.3 | 2023-11-01 | CVE-2023-20246 | Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a logic error that occurs when the access control policies are being populated. An attacker could exploit this vulnerability by establishing a connection to an affected device. A successful exploit could allow the attacker to bypass configured access control rules on the affected system. |
| 7.2 | 2023-10-25 | CVE-2023-20273 | A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to inject commands with the privileges of root. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web UI. A successful exploit could allow the attacker to inject commands to the underlying operating system with root privileges. |
| 7.5 | 2023-10-10 | CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
| 8.8 | 2023-10-04 | CVE-2023-20235 | A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could allow an authenticated, remote attacker to access the underlying operating system as the root user. This vulnerability exists because Docker containers with the privileged runtime option are not blocked when they are in application development mode. An attacker could exploit this vulnerability by using the Docker CLI to access an affected device. The application development workflow is meant to be used only on development systems and not in production systems. |
| 7.5 | 2023-09-27 | CVE-2023-20187 | A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. This vulnerability is due to incorrect handling of certain IPv6 multicast packets when they are fanned out more than seven times on an affected device. An attacker could exploit this vulnerability by sending a specific IPv6 multicast or IPv6 multicast VPN (MVPNv6) packet through the affected device. A successful exploit could allow the attacker to cause a reload of the affected device, resulting in a DoS condition. |
| 9.1 | 2023-09-27 | CVE-2023-20186 | A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to bypass command authorization and copy files to or from the file system of an affected device using the Secure Copy Protocol (SCP). This vulnerability is due to incorrect processing of SCP commands in AAA command authorization checks. An attacker with valid credentials and level 15 privileges could exploit this vulnerability by using SCP to connect to an affected device from an external machine. A successful exploit could allow the attacker to obtain or change the configuration of the affected device and put files on or retrieve files from the affected device. |
| 6.6 | 2023-09-27 | CVE-2023-20109 | A vulnerability in the Cisco Group Encrypted Transport VPN (GET VPN) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute arbitrary code on an affected device or cause the device to crash. This vulnerability is due to insufficient validation of attributes in the Group Domain of Interpretation (GDOI) and G-IKEv2 protocols of the GET VPN feature. An attacker could exploit this vulnerability by either compromising an installed key server or modifying the configuration of a group member to point to a key server that is controlled by the attacker. A successful exploit could allow the attacker to execute arbitrary code and gain full control of the affected system or cause the affected system to reload, resulting in a denial of service (DoS) condition. For more information, see the Details ["#details"] section of this advisory. |
| 6.8 | 2023-03-23 | CVE-2023-20082 | A vulnerability in Cisco IOS XE Software for Cisco Catalyst 9300 Series Switches could allow an authenticated, local attacker with level-15 privileges or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the chain of trust. This vulnerability is due to errors that occur when retrieving the public release key that is used for image signature verification. An attacker could exploit this vulnerability by modifying specific variables in the Serial Peripheral Interface (SPI) flash memory of an affected device. A successful exploit could allow the attacker to execute persistent code on the underlying operating system. Note: In Cisco IOS XE Software releases 16.11.1 and later, the complexity of an attack using this vulnerability is high. However, an attacker with level-15 privileges could easily downgrade the Cisco IOS XE Software on a device to a release that would lower the attack complexity. |
| 7.5 | 2023-03-23 | CVE-2023-20080 | A vulnerability in the IPv6 DHCP version 6 (DHCPv6) relay and server features of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition. This vulnerability is due to insufficient validation of data boundaries. An attacker could exploit this vulnerability by sending crafted DHCPv6 messages to an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 25% (22) | CWE-20 | Improper Input Validation |
| 15% (14) | CWE-78 | Improper Sanitization of Special Elements used in an OS Command ('O... |
| 10% (9) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 6% (6) | CWE-399 | Resource Management Errors |
| 5% (5) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 3% (3) | CWE-665 | Improper Initialization |
| 3% (3) | CWE-400 | Uncontrolled Resource Consumption ('Resource Exhaustion') |
| 3% (3) | CWE-352 | Cross-Site Request Forgery (CSRF) |
| 2% (2) | CWE-787 | Out-of-bounds Write |
| 2% (2) | CWE-667 | Insufficient Locking |
| 2% (2) | CWE-295 | Certificate Issues |
| 1% (1) | CWE-805 | Buffer Access with Incorrect Length Value |
| 1% (1) | CWE-770 | Allocation of Resources Without Limits or Throttling |
| 1% (1) | CWE-755 | Improper Handling of Exceptional Conditions |
| 1% (1) | CWE-754 | Improper Check for Unusual or Exceptional Conditions |
| 1% (1) | CWE-670 | Always-Incorrect Control Flow Implementation |
| 1% (1) | CWE-617 | Reachable Assertion |
| 1% (1) | CWE-489 | Leftover Debug Code |
| 1% (1) | CWE-476 | NULL Pointer Dereference |
| 1% (1) | CWE-436 | Interpretation Conflict |
| 1% (1) | CWE-347 | Improper Verification of Cryptographic Signature |
| 1% (1) | CWE-319 | Cleartext Transmission of Sensitive Information |
| 1% (1) | CWE-287 | Improper Authentication |
| 1% (1) | CWE-269 | Improper Privilege Management |
| 1% (1) | CWE-264 | Permissions, Privileges, and Access Controls |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2020-12-08 | Cisco IOS XE WebUI restricted character in authentication detected RuleID : 55833 - Type : POLICY-OTHER - Revision : 1 |
| 2020-12-05 | Cisco IOS malformed SIP Via header denial of service attempt RuleID : 54164 - Type : PROTOCOL-VOIP - Revision : 1 |
| 2020-12-05 | Cisco IOS malformed SIP Via header denial of service attempt RuleID : 54163 - Type : PROTOCOL-VOIP - Revision : 1 |
| 2020-12-05 | Cisco IOS IKE2 invalid port denial of service attempt RuleID : 54160 - Type : SERVER-OTHER - Revision : 1 |
| 2020-12-05 | Cisco IOS IKE2 invalid port denial of service attempt RuleID : 54159 - Type : SERVER-OTHER - Revision : 1 |
| 2020-12-05 | Cisco IOS Web UI cross site request forgery attempt RuleID : 52560 - Type : SERVER-WEBAPP - Revision : 1 |
| 2020-12-05 | Cisco IOS Web UI cross site request forgery attempt RuleID : 52559 - Type : SERVER-WEBAPP - Revision : 1 |
| 2020-12-05 | Cisco IOS SIP calling display name denial of service attempt RuleID : 49607 - Type : PROTOCOL-VOIP - Revision : 1 |
| 2020-12-05 | Cisco IOS SIP calling display name denial of service attempt RuleID : 49606 - Type : PROTOCOL-VOIP - Revision : 1 |
| 2020-12-05 | Cisco IOS DHCP relay integer underflow attempt RuleID : 46120 - Type : SERVER-OTHER - Revision : 1 |
| 2020-12-05 | Cisco IOS DHCP relay reply integer underflow attempt RuleID : 46119 - Type : SERVER-OTHER - Revision : 1 |
| 2017-09-28 | Cisco IOS IKEv2 session initialization denial of service attempt RuleID : 44464 - Type : SERVER-OTHER - Revision : 1 |
| 2017-03-23 | Cisco IOS XE webui denial of service attempt RuleID : 42071 - Type : SERVER-WEBAPP - Revision : 1 |
| 2017-03-23 | Cisco IOS L2TP invalid message digest AVP denial of service attempt RuleID : 42070 - Type : SERVER-OTHER - Revision : 1 |
| 2017-03-23 | Cisco IOS autonomic networking discovery denial of service attempt RuleID : 42051 - Type : SERVER-OTHER - Revision : 1 |
| 2016-09-29 | Cisco IOS malformed H.450 PER data out of bounds read attempt RuleID : 40298 - Type : PROTOCOL-VOIP - Revision : 1 |
| 2016-10-10 | Cisco IOS Group-Prime SHA memory disclosure attempt RuleID : 40222-community - Type : SERVER-OTHER - Revision : 5 |
| 2016-09-16 | Cisco IOS Group-Prime SHA memory disclosure attempt RuleID : 40222 - Type : SERVER-OTHER - Revision : 5 |
| 2016-10-10 | Cisco IOS Group-Prime MD5 memory disclosure attempt RuleID : 40221-community - Type : SERVER-OTHER - Revision : 5 |
| 2016-09-16 | Cisco IOS Group-Prime MD5 memory disclosure attempt RuleID : 40221 - Type : SERVER-OTHER - Revision : 5 |
| 2016-10-10 | Cisco IOS Group-Prime memory disclosure exfiltration attempt RuleID : 40220-community - Type : SERVER-OTHER - Revision : 6 |
| 2016-09-16 | Cisco IOS Group-Prime memory disclosure exfiltration attempt RuleID : 40220 - Type : SERVER-OTHER - Revision : 6 |
| 2016-05-27 | Cisco IOS NX invalid ICMPv6 neighbor discovery hop limit denial of service at... RuleID : 39065 - Type : SERVER-OTHER - Revision : 1 |
| 2016-03-14 | Cisco IOS invalid IKE fragment length memory corruption or exhaustion attempt RuleID : 37675 - Type : SERVER-OTHER - Revision : 3 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2018-04-17 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20180328-dhcpr3-iosxe.nasl - Type: ACT_GATHER_INFO |
| 2018-04-17 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20180328-dhcpr3-ios.nasl - Type: ACT_GATHER_INFO |
| 2018-04-10 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20160928-dns-iosxe.nasl - Type: ACT_GATHER_INFO |
| 2018-04-10 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20160928-dns-ios.nasl - Type: ACT_GATHER_INFO |
| 2018-04-06 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20180328-lldp-iosxr.nasl - Type: ACT_GATHER_INFO |
| 2018-04-06 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20180328-lldp-iosxe.nasl - Type: ACT_GATHER_INFO |
| 2018-04-06 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20180328-lldp-ios.nasl - Type: ACT_GATHER_INFO |
| 2017-11-13 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20171103-bgp-ios_xe.nasl - Type: ACT_GATHER_INFO |
| 2017-10-06 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170927-pnp-ios_xe.nasl - Type: ACT_GATHER_INFO |
| 2017-10-06 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170927-ike-ios.nasl - Type: ACT_GATHER_INFO |
| 2017-10-06 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170927-ike-ios_xe.nasl - Type: ACT_GATHER_INFO |
| 2017-10-06 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170927-pnp-ios.nasl - Type: ACT_GATHER_INFO |
| 2017-07-07 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170629-snmp-iosxe.nasl - Type: ACT_GATHER_INFO |
| 2017-07-07 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170629-snmp-ios.nasl - Type: ACT_GATHER_INFO |
| 2017-03-29 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170322-webui.nasl - Type: ACT_GATHER_INFO |
| 2017-03-28 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170322-l2tp-iosxe.nasl - Type: ACT_GATHER_INFO |
| 2017-03-28 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170322-l2tp-ios.nasl - Type: ACT_GATHER_INFO |
| 2017-03-24 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170320-aniipv6-iosxe.nasl - Type: ACT_GATHER_INFO |
| 2017-03-24 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170320-aniipv6-ios.nasl - Type: ACT_GATHER_INFO |
| 2017-03-24 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170320-ani-iosxe.nasl - Type: ACT_GATHER_INFO |
| 2017-03-24 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20170320-ani-ios.nasl - Type: ACT_GATHER_INFO |
| 2017-01-26 | Name: A remote device is affected by an information disclosure vulnerability. File: cisco_ikev1_info_disclosure.nasl - Type: ACT_ATTACK |
| 2016-11-14 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20160928-ikev1-iosxe.nasl - Type: ACT_GATHER_INFO |
| 2016-11-14 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20160928-ikev1-ios.nasl - Type: ACT_GATHER_INFO |
| 2016-10-07 | Name: The remote device is missing a vendor-supplied security patch. File: cisco-sa-20160928-msdp.nasl - Type: ACT_GATHER_INFO |
