The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Cisco IOS-XR

computer vulnerability note CVE-2017-12355

Cisco IOS XR: denial of service via LPTS

Synthesis of the vulnerability

An attacker can send malicious LPTS packets to Cisco IOS XR, in order to trigger a denial of service.
Impacted products: IOS XR Cisco, Cisco Router.
Severity: 2/4.
Consequences: denial of service on server, denial of service on service.
Provenance: intranet client.
Creation date: 30/11/2017.
Identifiers: cisco-sa-20171129-ios-xr, CSCvf76332, CVE-2017-12355, VIGILANCE-VUL-24579.

Description of the vulnerability

An attacker can send malicious LPTS packets to Cisco IOS XR, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability note CVE-2017-12270

Cisco IOS XR: denial of service via gRPC

Synthesis of the vulnerability

An attacker can generate a fatal error via gRPC of Cisco IOS XR, in order to trigger a denial of service.
Impacted products: IOS XR Cisco.
Severity: 2/4.
Consequences: denial of service on server, denial of service on service.
Provenance: intranet client.
Creation date: 05/10/2017.
Identifiers: CERTFR-2017-AVI-333, cisco-sa-20171004-ncs, CSCvb99388, CVE-2017-12270, VIGILANCE-VUL-24029.

Description of the vulnerability

An attacker can generate a fatal error via gRPC of Cisco IOS XR, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

vulnerability announce CVE-2017-6731

Cisco IOS XR: denial of service via MSDP

Synthesis of the vulnerability

An attacker can send malicious MSDP packets to Cisco IOS XR, in order to trigger a denial of service.
Impacted products: Cisco Catalyst, IOS XR Cisco, Cisco Router.
Severity: 2/4.
Consequences: denial of service on server, denial of service on service.
Provenance: intranet client.
Creation date: 06/07/2017.
Identifiers: CERTFR-2017-AVI-202, cisco-sa-20170705-iosxr, CSCvd94828, CVE-2017-6731, VIGILANCE-VUL-23142.

Description of the vulnerability

The Cisco IOS XR product has a service to manage received MSDP packets.

However, when malicious MSDP packets are received, a fatal error occurs.

An attacker can therefore send malicious MSDP packets to Cisco IOS XR, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

vulnerability alert CVE-2017-6728

Cisco IOS XR: privilege escalation via CLI

Synthesis of the vulnerability

An attacker can bypass restrictions via CLI of Cisco IOS XR, in order to escalate his privileges.
Impacted products: Cisco Catalyst, IOS XR Cisco, Cisco Router.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user shell.
Creation date: 06/07/2017.
Identifiers: CERTFR-2017-AVI-202, cisco-sa-20170705-ios, CSCvb99389, CVE-2017-6728, VIGILANCE-VUL-23141.

Description of the vulnerability

An attacker can bypass restrictions via CLI of Cisco IOS XR, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability note CVE-2017-6719

Cisco IOS XR: privilege escalation via CLI

Synthesis of the vulnerability

An attacker can bypass restrictions via CLI of Cisco IOS XR, in order to escalate his privileges.
Impacted products: Cisco Catalyst, IOS XR Cisco, Cisco Router.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user account.
Creation date: 22/06/2017.
Revision date: 27/06/2017.
Identifiers: CERTFR-2017-AVI-191, cisco-sa-20170621-ios, CSCvb99406, CVE-2017-6719, VIGILANCE-VUL-23059.

Description of the vulnerability

An attacker can bypass restrictions via CLI of Cisco IOS XR, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2017-6718

Cisco IOS XR: privilege escalation via CLI

Synthesis of the vulnerability

An attacker can bypass restrictions via CLI of Cisco IOS XR, in order to escalate his privileges.
Impacted products: Cisco Catalyst, IOS XR Cisco, Cisco Router.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user account.
Creation date: 22/06/2017.
Revision date: 27/06/2017.
Identifiers: CERTFR-2017-AVI-191, cisco-sa-20170621-ios1, CSCvb99384, CVE-2017-6718, VIGILANCE-VUL-23060.

Description of the vulnerability

An attacker can bypass restrictions via CLI of Cisco IOS XR, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability CVE-2017-6666

Cisco IOS XR: denial of service via Traffic Engineering

Synthesis of the vulnerability

An authenticated local attacker can stop the tunnel of type Traffic Engineering of Cisco IOS XR, in order to trigger a denial of service.
Impacted products: Cisco ASR, IOS XR Cisco, Cisco Router.
Severity: 1/4.
Consequences: denial of service on service.
Provenance: privileged account.
Creation date: 14/06/2017.
Identifiers: cisco-sa-20170607-ncs, CVE-2017-6666, VIGILANCE-VUL-22975.

Description of the vulnerability

An authenticated local attacker can stop the tunnel of type Traffic Engineering of Cisco IOS XR, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

vulnerability alert CVE-2017-3876

Cisco IOS XR: denial of service via Event Management Service gRPC

Synthesis of the vulnerability

An attacker can generate a fatal error via Event Management Service gRPC of Cisco IOS XR, in order to trigger a denial of service.
Impacted products: IOS XR Cisco, Cisco Router.
Severity: 2/4.
Consequences: denial of service on server, denial of service on service.
Provenance: intranet client.
Creation date: 03/05/2017.
Identifiers: CERTFR-2017-AVI-139, cisco-sa-20170503-ios-xr, CSCvb14441, CVE-2017-3876, VIGILANCE-VUL-22641.

Description of the vulnerability

An attacker can generate a fatal error via Event Management Service gRPC of Cisco IOS XR, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability alert CVE-2017-6599

Cisco IOS XR: memory leak via gRPC

Synthesis of the vulnerability

An attacker can create a memory leak via gRPC of Cisco IOS XR, in order to trigger a denial of service.
Impacted products: Cisco Catalyst, IOS XR Cisco, Cisco Router.
Severity: 2/4.
Consequences: denial of service on server, denial of service on service.
Provenance: internet server.
Creation date: 06/04/2017.
Identifiers: cisco-sa-20170405-ios, CSCvb14433, CVE-2017-6599, VIGILANCE-VUL-22356.

Description of the vulnerability

An attacker can create a memory leak via gRPC of Cisco IOS XR, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

vulnerability alert CVE-2017-3733

OpenSSL: denial of service via the "Encrypt-Then-Mac" option

Synthesis of the vulnerability

An attacker can change the state of the "Encrypt-Then-Mac" TLS option in a renegotiation with a server or client based on OpenSSL, in order to trigger a denial of service.
Impacted products: Cisco ASR, Cisco ATA, AsyncOS, Cisco Catalyst, Cisco Content SMA, Cisco ESA, IOS by Cisco, IOS XE Cisco, IOS XR Cisco, Nexus by Cisco, NX-OS, Cisco Prime Access Registrar, Prime Collaboration Assurance, Cisco Prime DCNM, Prime Infrastructure, Cisco Router, Cisco CUCM, Cisco Manager Attendant Console, Cisco Wireless IP Phone, Cisco WSA, Cisco Wireless Controller, HP Operations, IRAD, Tivoli Storage Manager, OpenSSL, Oracle Communications, Oracle Directory Server, Oracle Directory Services Plus, Oracle Fusion Middleware, Oracle Identity Management, Oracle iPlanet Web Server, Tuxedo, VirtualBox, WebLogic, Oracle Web Tier.
Severity: 2/4.
Consequences: denial of service on server, denial of service on service, denial of service on client.
Provenance: internet client.
Creation date: 16/02/2017.
Identifiers: 2003480, 2003620, 2003673, 2004940, CERTFR-2017-AVI-035, cisco-sa-20170130-openssl, cpuapr2019, cpujan2018, cpuoct2017, CVE-2017-3733, HPESBGN03728, VIGILANCE-VUL-21871.

Description of the vulnerability

OpenSSL implements the possibility of renegotiation of TLS option and parameters during a session.

However, for some combinations of algorithms, the negation of the state of the option "Encrypt-Then-Mac" generates a fatal error.

An attacker can therefore change the state of the "Encrypt-Then-Mac" TLS option in a renegotiation with a server or client based on OpenSSL, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco IOS-XR: