Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Cisco — Vulnerabilities & Security Advisories 3188

Browse all 3188 CVE security advisories affecting Cisco. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cisco Systems operates as a global leader in networking hardware, software, and telecommunications services, providing critical infrastructure for enterprise connectivity and cloud security. With over 3,000 recorded CVEs, the company’s attack surface is extensive, reflecting the complexity of its diverse product portfolio. Historically, vulnerabilities frequently involve remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from legacy protocols or complex configuration interfaces. Notable incidents include the 2023 supply chain compromise affecting the Cisco AnyConnect Secure Mobility Client, which allowed attackers to bypass authentication mechanisms. These breaches highlight risks associated with widely deployed endpoint security agents. The sheer volume of disclosed issues underscores the challenges inherent in maintaining security across such a vast ecosystem of interconnected devices and software solutions, requiring rigorous patch management and continuous monitoring to mitigate potential exploitation by threat actors targeting critical network infrastructure.

Top products by Cisco: Cisco Small Business RV Series Router Firmware Cisco IOS XE Software Cisco Adaptive Security Appliance (ASA) Software Cisco Identity Services Engine Software Cisco Firepower Management Center Cisco IOS XR Software Cisco Firepower Threat Defense Software Cisco NX-OS Software Cisco Data Center Network Manager Cisco SD-WAN vManage Cisco SD-WAN Solution Cisco Webex Meetings Cisco Unified Communications Manager Cisco Prime Infrastructure IOS Cisco Enterprise NFV Infrastructure Software Cisco IOS Cisco WebEx WRF Player Cisco Digital Network Architecture Center (DNA Center) Cisco Catalyst SD-WAN Manager Cisco Email Security Appliance (ESA) Cisco Unified Contact Center Express Cisco Aironet Access Point Software Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Cisco Unified Computing System (Managed) Cisco Application Policy Infrastructure Controller (APIC) Cisco Unity Connection Cisco Wireless LAN Controller (WLC) Cisco Web Security Appliance (WSA) Cisco AnyConnect Secure Mobility Client
CVE IDTitleCVSSSeverityPublished
CVE-2026-20219 Cisco Slido IDOR漏洞致用户隐私泄露 — Cisco Webex MeetingsCWE-639 5.4 Medium2026-05-06
CVE-2026-20034 Cisco Unity Connection Remote Code Execution Vulnerability — Cisco Unity ConnectionCWE-35 8.8 High2026-05-06
CVE-2026-20035 Cisco Unity Connection Server-Side Request Forgery Vulnerability — Cisco Unity ConnectionCWE-918 7.2 High2026-05-06
CVE-2026-20167 Cisco IoT Field Network Director Remote Device Denial of Service Vulnerability — Cisco IoT Field Network Director (IoT-FND)CWE-284 7.7 High2026-05-06
CVE-2026-20169 Cisco IoT Field Network Director Command Injection Vulnerability — Cisco IoT Field Network Director (IoT-FND)CWE-77 6.4 Medium2026-05-06
CVE-2026-20168 Cisco IoT Field Network Director Path Traversal Vulnerability — Cisco IoT Field Network Director (IoT-FND)CWE-388 6.5 Medium2026-05-06
CVE-2026-20172 Cisco Enterprise Chat and Email Lite Agent File Upload Vulnerability — Cisco Enterprise Chat and EmailCWE-646 4.3 Medium2026-05-06
CVE-2026-20188 Cisco Crosswork Network Controller and Cisco Network Services Orchestrator Connection Exhaustion Denial of Service Vulnerability — Cisco Crosswork Network Change AutomationCWE-400 7.5 High2026-05-06
CVE-2026-20189 Cisco Prime Infrastructure Information Disclosure Vulnerability — Cisco Prime InfrastructureCWE-862 4.3 Medium2026-05-06
CVE-2026-20185 Cisco SG350 and SG350X Series Managed Switches SNMP Denial of Service Vunerability — Cisco Small Business Smart and Managed SwitchesCWE-122 7.7 High2026-05-06
CVE-2026-20193 Cisco Identity Services Engine Authentication Bypass Vulnerability — Cisco Identity Services Engine SoftwareCWE-862 4.3 Medium2026-05-06
CVE-2026-20195 Cisco Identity Services Engine Observable Response Discrepancy Vulnerability — Cisco Identity Services Engine SoftwareCWE-204 5.3 Medium2026-05-06
CVE-2026-20136 Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability — Cisco Identity Services Engine SoftwareCWE-116 6.0 Medium2026-04-15
CVE-2026-20059 Cisco Unity Connection Reflected Cross-Site Scripting Vulnerability — Cisco Unity ConnectionCWE-79 6.1 Medium2026-04-15
CVE-2026-20060 Cisco Unity Connection Open Redirect Vulnerability — Cisco Unity ConnectionCWE-601 4.7 Medium2026-04-15
CVE-2026-20061 Cisco Unity Connection SQL Injection Vulnerability — Cisco Unity ConnectionCWE-89 4.3 Medium2026-04-15
CVE-2026-20170 Cisco Webex Contact Center 安全漏洞 — Cisco Webex Contact CenterCWE-80 6.1 Medium2026-04-15
CVE-2026-20184 Cisco Webex Meetings Certificate Validation Vulnerability — Cisco Webex MeetingsCWE-295 9.8 Critical2026-04-15
CVE-2026-20180 Cisco Identity Services Engine Multiple Remote Code Execution Vulnerability — Cisco Identity Services Engine SoftwareCWE-22 9.9 Critical2026-04-15
CVE-2026-20161 Cisco ThousandEyes Enterprise Agent Arbitrary File Overwrite Vulnerability — Cisco ThousandEyes Enterprise AgentCWE-59 5.5 Medium2026-04-15
CVE-2026-20152 Cisco Secure Web Appliance Authentication Service Traffic Bypass Vulnerability — Cisco Secure Web ApplianceCWE-305 5.3 Medium2026-04-15
CVE-2026-20186 Cisco Identity Services Engine Multiple Authenticated Remote Code Execution Vulnerability — Cisco Identity Services Engine SoftwareCWE-77 9.9 Critical2026-04-15
CVE-2026-20148 Cisco Identity Services Engine Path Traversal Vulnerability — Cisco Identity Services Engine SoftwareCWE-22 4.9 Medium2026-04-15
CVE-2026-20147 Cisco Identity Services Engine Remote Code Execution Vulnerability — Cisco Identity Services Engine SoftwareCWE-77 9.9 Critical2026-04-15
CVE-2026-20081 Cisco Unity Connection Arbitrary File Download Vulnerability — Cisco Unity ConnectionCWE-23 6.5 Medium2026-04-15
CVE-2026-20078 Cisco Unity Connection Arbitrary File Download Vulnerability — Cisco Unity ConnectionCWE-23 6.5 Medium2026-04-15
CVE-2026-20132 Cisco Identity Services Engine Multiple Cross-Site Scripting Vulnerabilities — Cisco Identity Services Engine SoftwareCWE-79 4.8 Medium2026-04-15
CVE-2026-20090 Cisco Integrated Management Controller Cross-Site Scripting Vulnerability — Cisco Enterprise NFV Infrastructure SoftwareCWE-79 4.8 Medium2026-04-01
CVE-2026-20089 Cisco Integrated Management Controller Cross-Site Scripting Vulnerability — Cisco Enterprise NFV Infrastructure SoftwareCWE-79 4.8 Medium2026-04-01
CVE-2026-20087 Cisco Integrated Management Controller Cross-Site Scripting Vulnerability — Cisco Enterprise NFV Infrastructure SoftwareCWE-79 4.8 Medium2026-04-01

This page lists every published CVE security advisory associated with Cisco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.