Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Cisco IOS XE — Vulnerabilities & Security Advisories 35

All 35 CVE vulnerabilities found in Cisco IOS XE, with AI-generated Chinese analysis, references, and POCs.

This page is a vulnerability aggregation resource for Cisco IOS XE, a widely deployed network operating system. It provides a structured view of security weaknesses associated with this specific product line, focusing on the historical record of disclosed flaws and their remediation statuses. The content on this page collects a wide variety of vulnerability types, including buffer overflows, command injection flaws, cross-site scripting issues, and authentication bypasses. It encompasses vulnerabilities discovered and publicly disclosed over a multi-year period, spanning from the early releases of the IOS XE architecture through recent iterations. This comprehensive time range ensures that users can trace the evolution of security issues across different software versions, including those affecting legacy systems still in active use within enterprise environments. By aggregating data from multiple sources, including vendor advisories and independent security researchers, this resource offers a holistic perspective on the security posture of the platform. Visitors to this page can effectively track vendor advisories to understand official patch releases and criticality levels assigned by Cisco. The aggregated data allows for a deeper understanding of specific weakness classes, such as Common Weakness Enumerations (CWEs), and how they manifest within the IOS XE codebase. Additionally, users can look up a product's vulnerability history to identify patterns, assess long-term risk exposure, and prioritize remediation efforts based on historical trends rather than isolated incidents. This structured approach supports informed decision-making for network administrators and security professionals responsible for maintaining the integrity and confidentiality of Cisco-based infrastructure.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2018-0194 Cisco IOS XE Software CLI解析器操作系统命令注入漏洞 CWE-78 7.8 -2018-04-02
CVE-2018-0184 Cisco IOS XE Software CLI解析器权限许可和访问控制漏洞 CWE-264 6.7 -2018-03-28
CVE-2018-0164 多款Cisco产品IOS XE Software 资源管理错误漏洞 CWE-399 8.6 -2018-03-28
CVE-2018-0165 Cisco IOS XE Software 资源管理错误漏洞 CWE-399 7.4 -2018-03-28
CVE-2018-0169 Cisco IOS XE Software CLI解析器权限许可和访问控制漏洞 CWE-264 7.8 -2018-03-28
CVE-2018-0170 Cisco IOS XE Software 安全漏洞 CWE-416 7.5 -2018-03-28
CVE-2018-0176 Cisco IOS XE Software CLI解析器操作系统命令注入漏洞 CWE-264 7.8 -2018-03-28
CVE-2018-0177 Cisco Catalyst 3850和Catalyst 3650 Series Switches IOS XE Software 安全漏洞 CWE-19 7.5 -2018-03-28
CVE-2018-0182 Cisco IOS XE Software CLI解析器命令注入漏洞 CWE-78 7.8 -2018-03-28
CVE-2018-0183 Cisco 4000 Series Integrated Services Router IOS XE Software CLI解析器权限许可和访问控制漏洞 CWE-264 6.7 -2018-03-28
CVE-2018-0160 Cisco IOS XE Software Simple Network Management Protocol子系统安全漏洞 CWE-415 7.7 -2018-03-28
CVE-2018-0185 Cisco IOS XE Software CLI解析器命令注入漏洞 CWE-78 7.8 -2018-03-28
CVE-2018-0186 Cisco IOS XE Software 跨站脚本漏洞 CWE-79 6.1 -2018-03-28
CVE-2018-0188 Cisco IOS XE Software 跨站脚本漏洞 CWE-79 6.1 -2018-03-28
CVE-2018-0190 Cisco IOS XE Software 跨站脚本漏洞 CWE-79 6.1 -2018-03-28
CVE-2018-0193 Cisco IOS XE Software CLI解析器命令注入漏洞 CWE-78 7.8 -2018-03-28
CVE-2018-0195 Cisco IOS XE Software REST API 授权问题漏洞 CWE-287 8.8 -2018-03-28
CVE-2018-0196 Cisco IOS XE Software 输入验证错误漏洞 CWE-20 6.5 -2018-03-28
CVE-2018-0157 Cisco IOS XE Software 安全漏洞 CWE-19 8.6 -2018-03-28
CVE-2018-0150 Cisco IOS XE Software 安全漏洞 CWE-798 9.8 -2018-03-28
CVE-2017-12319 Cisco IOS XE Software Ethernet Virtual Private Network 安全漏洞 CWE-20 5.9 -2018-03-27
CVE-2017-12272 Cisco IOS XE Software Web框架跨站脚本漏洞 CWE-79 6.1 -2017-10-19
CVE-2017-12289 Cisco IOS XE Software 安全漏洞 CWE-200 4.4 -2017-10-19
CVE-2017-12226 多款Cisco产品IOS XE Software 权限许可和访问控制漏洞 CWE-264 8.8 -2017-09-28
CVE-2017-12222 Cisco Catalyst 3650和3850交换机IOS XE Software 资源管理错误漏洞 CWE-399 6.5 -2017-09-28
CVE-2017-12229 Cisco IOS XE 授权问题漏洞 CWE-287 9.8 -2017-09-28
CVE-2017-12230 Cisco IOS XE 权限许可和访问控制漏洞 CWE-264 8.8 -2017-09-28
CVE-2017-12236 Cisco IOS XE 授权问题漏洞 CWE-287 9.8 -2017-09-28
CVE-2017-12239 Cisco ASR 1000 Series Aggregation Services Routers和Cisco cBR-8 Converged Broadband Routers IOS XE 权限许可和访问控制问题漏洞 CWE-264 7.6 -2017-09-28
CVE-2017-6795 Cisco ASR 920 Series Aggregation Services Routers IOS XE Software 安全漏洞 CWE-20 4.4 -2017-09-07

All 35 known CVE vulnerabilities affecting Cisco IOS XE with full Chinese analysis, references, and POCs where available.