Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

Cisco — Vulnerabilities & Security Advisories 3196

Browse all 3196 CVE security advisories affecting Cisco. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cisco Systems operates as a global leader in networking hardware, software, and telecommunications services, providing critical infrastructure for enterprise connectivity and cloud security. With over 3,000 recorded CVEs, the company’s attack surface is extensive, reflecting the complexity of its diverse product portfolio. Historically, vulnerabilities frequently involve remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from legacy protocols or complex configuration interfaces. Notable incidents include the 2023 supply chain compromise affecting the Cisco AnyConnect Secure Mobility Client, which allowed attackers to bypass authentication mechanisms. These breaches highlight risks associated with widely deployed endpoint security agents. The sheer volume of disclosed issues underscores the challenges inherent in maintaining security across such a vast ecosystem of interconnected devices and software solutions, requiring rigorous patch management and continuous monitoring to mitigate potential exploitation by threat actors targeting critical network infrastructure.

Top products by Cisco: Cisco Small Business RV Series Router Firmware Cisco IOS XE Software Cisco Adaptive Security Appliance (ASA) Software Cisco Identity Services Engine Software Cisco Firepower Management Center Cisco IOS XR Software Cisco Firepower Threat Defense Software Cisco NX-OS Software Cisco Data Center Network Manager Cisco SD-WAN vManage Cisco SD-WAN Solution Cisco Webex Meetings Cisco Unified Communications Manager Cisco Prime Infrastructure IOS Cisco Enterprise NFV Infrastructure Software Cisco IOS Cisco Catalyst SD-WAN Manager Cisco WebEx WRF Player Cisco Digital Network Architecture Center (DNA Center) Cisco Email Security Appliance (ESA) Cisco Unified Contact Center Express Cisco Aironet Access Point Software Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Cisco Unified Computing System (Managed) Cisco Application Policy Infrastructure Controller (APIC) Cisco Unity Connection Cisco Wireless LAN Controller (WLC) Cisco Web Security Appliance (WSA) Cisco AnyConnect Secure Mobility Client
CVE IDTitleCVSSSeverityPublished
CVE-2021-1470 Cisco SD-WAN SQL Injection Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-20 4.9 Medium2024-11-15
CVE-2021-1481 Cisco SD-WAN vManage Cypher Query Language Injection Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-943 4.3 Medium2024-11-15
CVE-2021-1482 Cisco SD-WAN vManage Authorization Bypass Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-20 6.4 Medium2024-11-15
CVE-2021-1464 Cisco SD-WAN vManage Authorization Bypass Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-20 5.0 Medium2024-11-15
CVE-2021-1483 Cisco SD-WAN vManage Software XML External Entity Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-611 6.4 Medium2024-11-15
CVE-2021-1484 Cisco SD-WAN vManage Command Injection Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-88 6.5 Medium2024-11-15
CVE-2021-1491 Cisco SD-WAN vManage Software Information Disclosure Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-59 6.5 -2024-11-15
CVE-2021-1494 Snort 安全漏洞 — Cisco Firepower Threat Defense SoftwareCWE-693 5.8 Medium2024-11-15
CVE-2022-20633 Cisco Enterprise Chat and Email Username Enumeration Vulnerability — Cisco Enterprise Chat and EmailCWE-204 5.3 Medium2024-11-15
CVE-2022-20632 Cisco Enterprise Chat and Email Cross-Site Scripting Vulnerability — Cisco Enterprise Chat and EmailCWE-79 6.1 Medium2024-11-15
CVE-2021-34753 Cisco Firepower Threat Defense Ethernet Industrial Protocol Policy Bypass Vulnerabilities — Cisco Firepower Threat Defense SoftwareCWE-284 5.8 Medium2024-11-15
CVE-2021-34752 Cisco Firepower Threat Defense Command Injection Vulnerabilities — Cisco Firepower Threat Defense SoftwareCWE-20 6.7 Medium2024-11-15
CVE-2021-34751 Cisco Firepower Management Center Software Configuration Information Disclosure Vulnerability — Cisco Firepower Management CenterCWE-317 4.3 Medium2024-11-15
CVE-2021-34750 Cisco Firepower Management Center Software Configuration Information Disclosure Vulnerability — Cisco Firepower Management CenterCWE-317 4.3 Medium2024-11-15
CVE-2022-20626 Cisco Prime Access Registrar Appliance Cross-Site Scripting Vulnerability — Cisco Prime Access RegistrarCWE-79 5.5 Medium2024-11-15
CVE-2022-20631 Cisco Enterprise Chat and Email Cross-Site Scripting Vulnerability — Cisco Enterprise Chat and EmailCWE-79 6.1 Medium2024-11-15
CVE-2022-20654 Cisco Webex Meetings Cross-Site Scripting Vulnerability — Cisco Webex MeetingsCWE-80 6.1 Medium2024-11-15
CVE-2022-20634 Cisco Enterprise Chat and Email Open Redirect Vulnerability — Cisco Enterprise Chat and EmailCWE-601 4.7 Medium2024-11-15
CVE-2022-20648 Cisco Redundancy Configuration Manager Debug Information Disclosure Vulnerability — Cisco Redundancy Configuration ManagerCWE-200 5.3 Medium2024-11-15
CVE-2022-20649 Cisco Redundancy Configuration Manager Debug Remote Code Execution Vulnerability — Cisco Redundancy Configuration ManagerCWE-489 8.1 High2024-11-15
CVE-2022-20652 Cisco Tetration Command Injection Vulnerability — Cisco Secure WorkloadCWE-78 6.5 Medium2024-11-15
CVE-2022-20655 Cisco 多款产品操作系统命令注入漏洞 — Cisco IOS XR SoftwareCWE-78 8.8 High2024-11-15
CVE-2022-20657 Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Cross-Site Scripting Vulnerability — Cisco Evolved Programmable Network Manager (EPNM)CWE-79 6.1 Medium2024-11-15
CVE-2022-20663 Secure Network Analytics Cross-Site Scripting Vulnerability — Cisco Secure Network AnalyticsCWE-79 6.1 Medium2024-11-15
CVE-2022-20685 Multiple Cisco Products Snort Modbus Denial of Service Vulnerability — Cisco Cyber VisionCWE-190 7.5 High2024-11-15
CVE-2022-20656 Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Path Traversal Vulnerability — Cisco Evolved Programmable Network Manager (EPNM)CWE-24 6.5 Medium2024-11-15
CVE-2022-20766 Cisco ATA 190 Series Analog Telephone Adapter firmware Cisco Discovery Protocol Denial of Service Vulnerability — Cisco Analog Telephone Adaptor (ATA) SoftwareCWE-125 5.3 Medium2024-11-15
CVE-2022-20793 Cisco Touch 10 Device Insufficient Identity Verification Vulnerability — Cisco RoomOS SoftwareCWE-325 6.8 Medium2024-11-15
CVE-2022-20814 Cisco Expressway Series and Cisco TelePresence VCS Improper Certificate Validation Vulnerability — Cisco TelePresence Video Communication Server (VCS) ExpresswayCWE-295 7.4 High2024-11-15
CVE-2022-20846 Cisco IOS XR Software Cisco Discovery Protocol Buffer Overflow Vulnerability — Cisco IOS XR SoftwareCWE-120 4.3 Medium2024-11-15

This page lists every published CVE security advisory associated with Cisco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.