Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

Cisco — Vulnerabilities & Security Advisories 3206

Browse all 3206 CVE security advisories affecting Cisco. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cisco Systems operates as a global leader in networking hardware, software, and telecommunications services, providing critical infrastructure for enterprise connectivity and cloud security. With over 3,000 recorded CVEs, the company’s attack surface is extensive, reflecting the complexity of its diverse product portfolio. Historically, vulnerabilities frequently involve remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from legacy protocols or complex configuration interfaces. Notable incidents include the 2023 supply chain compromise affecting the Cisco AnyConnect Secure Mobility Client, which allowed attackers to bypass authentication mechanisms. These breaches highlight risks associated with widely deployed endpoint security agents. The sheer volume of disclosed issues underscores the challenges inherent in maintaining security across such a vast ecosystem of interconnected devices and software solutions, requiring rigorous patch management and continuous monitoring to mitigate potential exploitation by threat actors targeting critical network infrastructure.

Top products by Cisco: Cisco Small Business RV Series Router Firmware Cisco IOS XE Software Cisco Adaptive Security Appliance (ASA) Software Cisco Identity Services Engine Software Cisco Firepower Management Center Cisco IOS XR Software Cisco Firepower Threat Defense Software Cisco NX-OS Software Cisco Data Center Network Manager Cisco SD-WAN vManage Cisco SD-WAN Solution Cisco Unified Communications Manager Cisco Webex Meetings Cisco Prime Infrastructure IOS Cisco Enterprise NFV Infrastructure Software Cisco IOS Cisco Catalyst SD-WAN Manager Cisco WebEx WRF Player Cisco Digital Network Architecture Center (DNA Center) Cisco Email Security Appliance (ESA) Cisco Aironet Access Point Software Cisco Unified Contact Center Express Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Cisco Unified Computing System (Managed) Cisco Application Policy Infrastructure Controller (APIC) Cisco Unity Connection Cisco Wireless LAN Controller (WLC) Cisco Web Security Appliance (WSA) Cisco AnyConnect Secure Mobility Client
CVE IDTitleCVSSSeverityPublished
CVE-2026-20178 Cisco Webex App URL参数验证缺陷致重定向 — Cisco Webex AppCWE-601 4.3 Medium2026-06-17
CVE-2026-20246 Cisco Umbrella Virtual Appliance Privilege Escalation Vulnerability — Cisco Umbrella Insights Virtual ApplianceCWE-269 6.0 Medium2026-06-17
CVE-2026-20220 Cisco Crosswork Network Controller Remote Code Execution Vulnerability — Cisco Crosswork Network Change AutomationCWE-74 6.3 Medium2026-06-17
CVE-2026-20190 Cisco Identity Services Engine Information Disclosure Vulnerability — Cisco Identity Services Engine SoftwareCWE-285 7.5 High2026-06-17
CVE-2026-20181 Cisco Identity Services Engine Remote Code Execution Vulnerability — Cisco Identity Services Engine SoftwareCWE-22 9.1 Critical2026-06-17
CVE-2026-20262 Cisco Catalyst SD-WAN Manager Arbitrary File Write Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-22 6.5 Medium2026-06-15
CVE-2026-20245 Cisco Catalyst SD-WAN Controller Authenticated Privilege Escalation Vulnerability — Cisco Catalyst SD-WAN ControllerCWE-116 7.8 High2026-06-04
CVE-2026-20230 Cisco Unified Communications Manager 代码问题漏洞 — Cisco Unified Communications ManagerCWE-918 8.6 High2026-06-03
CVE-2026-20175 Cisco Finesse File Inclusion Vulnerability — Cisco FinesseCWE-73 6.1 Medium2026-06-03
CVE-2026-20233 Cisco Webex Meetings Cross-Site Scripting Vulnerability — Cisco Webex MeetingsCWE-79 6.1 Medium2026-06-03
CVE-2026-20199 Cisco ThousandEyes Virtual Appliance 注入漏洞 — Cisco ThousandEyes Enterprise AgentCWE-74 4.7 Medium2026-05-20
CVE-2026-20171 Cisco Nexus 3000 and 9000 Series Border Gateway Protocol Denial of Service Vulnerability — Cisco NX-OS SoftwareCWE-670 6.8 Medium2026-05-20
CVE-2026-20206 Cisco ThousandEyes BrowserBot Command Injection Vulnerability — Cisco ThousandEyes Enterprise AgentCWE-78 6.3 Medium2026-05-20
CVE-2026-20223 Cisco Secure Workload Unauthorized API Access Vulnerability — Cisco Secure WorkloadCWE-306 10.0 Critical2026-05-20
CVE-2026-20224 Cisco Catalyst SD-WAN Manager XML External Entity Injection Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-20 8.6 High2026-05-14
CVE-2026-20210 Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-779 5.4 Medium2026-05-14
CVE-2026-20209 Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-779 5.4 Medium2026-05-14
CVE-2026-20182 Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability — Cisco Catalyst SD-WAN ControllerCWE-287 10.0 Critical2026-05-14
CVE-2026-20219 Cisco Slido 安全漏洞 — Cisco Webex MeetingsCWE-639 5.4 Medium2026-05-06
CVE-2026-20034 Cisco Unity Connection Remote Code Execution Vulnerability — Cisco Unity ConnectionCWE-35 8.8 High2026-05-06
CVE-2026-20035 Cisco Unity Connection Server-Side Request Forgery Vulnerability — Cisco Unity ConnectionCWE-918 7.2 High2026-05-06
CVE-2026-20167 Cisco IoT Field Network Director Remote Device Denial of Service Vulnerability — Cisco IoT Field Network Director (IoT-FND)CWE-284 7.7 High2026-05-06
CVE-2026-20169 Cisco IoT Field Network Director Command Injection Vulnerability — Cisco IoT Field Network Director (IoT-FND)CWE-77 6.4 Medium2026-05-06
CVE-2026-20168 Cisco IoT Field Network Director Path Traversal Vulnerability — Cisco IoT Field Network Director (IoT-FND)CWE-388 6.5 Medium2026-05-06
CVE-2026-20172 Cisco Enterprise Chat and Email Lite Agent File Upload Vulnerability — Cisco Enterprise Chat and EmailCWE-646 4.3 Medium2026-05-06
CVE-2026-20188 Cisco Crosswork Network Controller and Cisco Network Services Orchestrator Advisory — Cisco Crosswork Network Change AutomationCWE-400--2026-05-06
CVE-2026-20189 Cisco Prime Infrastructure Information Disclosure Vulnerability — Cisco Prime InfrastructureCWE-862 4.3 Medium2026-05-06
CVE-2026-20185 Cisco SG350 and SG350X Series Managed Switches SNMP Denial of Service Vunerability — Cisco Small Business Smart and Managed SwitchesCWE-122 7.7 High2026-05-06
CVE-2026-20193 Cisco Identity Services Engine Authentication Bypass Vulnerability — Cisco Identity Services Engine SoftwareCWE-862 4.3 Medium2026-05-06
CVE-2026-20195 Cisco Identity Services Engine Observable Response Discrepancy Vulnerability — Cisco Identity Services Engine SoftwareCWE-204 5.3 Medium2026-05-06

This page lists every published CVE security advisory associated with Cisco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.