CVE Tracker

CVE ID	Severity	EPSS	Vendor	Description	Date	Status
CVE-2017-6744	High	19.0%	CiscoIOS software	The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS 1 contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected system via IPv4 or IPv6.	Mar 3, 2022	KEV
CVE-2018-0155	High	14.5%	CiscoCatalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches	A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial-of-service (DoS) condition.	Mar 3, 2022	KEV
CVE-2010-3333	High	93.8%	MicrosoftOffice	A stack-based buffer overflow vulnerability exists in the parsing of RTF data in Microsoft Office and earlier allows an attacker to perform remote code execution.	Mar 3, 2022	KEV
CVE-2017-12232	High	1.0%	CiscoIOS software	A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers running Cisco IOS could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service.	Mar 3, 2022	KEV
CVE-2017-6739	High	28.8%	CiscoIOS and IOS XE Software	The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload.	Mar 3, 2022	KEV
CVE-2017-6627	High	10.8%	CiscoIOS and IOS XE Software	A vulnerability in the UDP processing code of Cisco IOS and IOS XE could allow an unauthenticated, remote attacker to cause the input queue of an affected system to hold UDP packets, causing an interface queue wedge and denial of service.	Mar 3, 2022	KEV
CVE-2017-12234	High	6.5%	CiscoIOS software	There is a vulnerability in the implementation of the Common Industrial Protocol (CIP) feature in Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service.	Mar 3, 2022	KEV
CVE-2017-12240	High	7.9%	CiscoIOS and IOS XE Software	The Dynamic Host Configuration Protocol (DHCP) relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system.	Mar 3, 2022	KEV
CVE-2017-6740	High	24.3%	CiscoIOS and IOS XE Software	The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload.	Mar 3, 2022	KEV
CVE-2017-11826	High	90.5%	MicrosoftOffice	A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.	Mar 3, 2022	KEV
CVE-2013-0641	High	88.0%	AdobeReader	A buffer overflow vulnerability exists in Adobe Reader which allows an attacker to perform remote code execution.	Mar 3, 2022	KEV
CVE-2017-6737	High	28.8%	CiscoIOS and IOS XE Software	The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code.	Mar 3, 2022	KEV
CVE-2017-0001	High	25.4%	MicrosoftGraphics Device Interface (GDI)	The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges	Mar 3, 2022	KEV
CVE-2016-7855	High	46.9%	AdobeFlash Player	Use-after-free vulnerability in Adobe Flash Player Windows and OS and Linux allows remote attackers to execute arbitrary code.	Mar 3, 2022	KEV
CVE-2016-8562	High	14.6%	SiemensSIMATIC CP	An improper privilege management vulnerability exists within the Siemens SIMATIC Communication Processor (CP) that allows a privileged attacker to remotely cause a denial of service.	Mar 3, 2022	KEV
CVE-2017-6663	High	2.3%	CiscoIOS and IOS XE Software	A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause autonomic nodes of an affected system to reload, resulting in denial-of-service (DoS).	Mar 3, 2022	KEV
CVE-2017-12238	High	1.2%	CiscoCatalyst 6800 Series Switches	A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco IOS for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent attacker to cause a denial of service.	Mar 3, 2022	KEV
CVE-2018-0156	High	15.5%	CiscoIOS Software and Cisco IOS XE Software	A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial-of-service (DoS) condition.	Mar 3, 2022	KEV
CVE-2018-0158	High	14.6%	CiscoIOS Software and Cisco IOS XE Software	A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial-of-service (DoS) condition.	Mar 3, 2022	KEV
CVE-2014-0496	High	74.9%	AdobeReader and Acrobat	Adobe Reader and Acrobat contain a use-after-free vulnerability which can allow for code execution.	Mar 3, 2022	KEV

CVE-2017-6744KEV

High

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS 1 contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected system via IPv4 or IPv6.

CiscoEPSS 19.0%

CVE-2018-0155KEV

High

A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial-of-service (DoS) condition.

CiscoEPSS 14.5%

CVE-2010-3333KEV

High

A stack-based buffer overflow vulnerability exists in the parsing of RTF data in Microsoft Office and earlier allows an attacker to perform remote code execution.

MicrosoftEPSS 93.8%

CVE-2017-12232KEV

High

A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers running Cisco IOS could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service.

CiscoEPSS 1.0%

CVE-2017-6739KEV

High

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload.

CiscoEPSS 28.8%

CVE-2017-6627KEV

High

A vulnerability in the UDP processing code of Cisco IOS and IOS XE could allow an unauthenticated, remote attacker to cause the input queue of an affected system to hold UDP packets, causing an interface queue wedge and denial of service.

CiscoEPSS 10.8%

CVE-2017-12234KEV

High

There is a vulnerability in the implementation of the Common Industrial Protocol (CIP) feature in Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service.

CiscoEPSS 6.5%

CVE-2017-12240KEV

High

The Dynamic Host Configuration Protocol (DHCP) relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system.

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.

MicrosoftEPSS 90.5%

CVE-2013-0641KEV

High

A buffer overflow vulnerability exists in Adobe Reader which allows an attacker to perform remote code execution.

AdobeEPSS 88.0%

CVE-2017-6737KEV

High

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code.

CiscoEPSS 28.8%

CVE-2017-0001KEV

High

The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges

MicrosoftEPSS 25.4%

CVE-2016-7855KEV

High

Use-after-free vulnerability in Adobe Flash Player Windows and OS and Linux allows remote attackers to execute arbitrary code.

AdobeEPSS 46.9%

CVE-2016-8562KEV

High

An improper privilege management vulnerability exists within the Siemens SIMATIC Communication Processor (CP) that allows a privileged attacker to remotely cause a denial of service.

SiemensEPSS 14.6%

CVE-2017-6663KEV

High

A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause autonomic nodes of an affected system to reload, resulting in denial-of-service (DoS).

CiscoEPSS 2.3%

CVE-2017-12238KEV

High

A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco IOS for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent attacker to cause a denial of service.

CiscoEPSS 1.2%

CVE-2018-0156KEV

High

A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial-of-service (DoS) condition.

CiscoEPSS 15.5%

CVE-2018-0158KEV

High

A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial-of-service (DoS) condition.

CiscoEPSS 14.6%

CVE-2014-0496KEV

High

Adobe Reader and Acrobat contain a use-after-free vulnerability which can allow for code execution.

AdobeEPSS 74.9%

87 88 89 90 91 92 93