Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Cisco — Vulnerabilities & Security Advisories 3192

Browse all 3192 CVE security advisories affecting Cisco. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cisco Systems operates as a global leader in networking hardware, software, and telecommunications services, providing critical infrastructure for enterprise connectivity and cloud security. With over 3,000 recorded CVEs, the company’s attack surface is extensive, reflecting the complexity of its diverse product portfolio. Historically, vulnerabilities frequently involve remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from legacy protocols or complex configuration interfaces. Notable incidents include the 2023 supply chain compromise affecting the Cisco AnyConnect Secure Mobility Client, which allowed attackers to bypass authentication mechanisms. These breaches highlight risks associated with widely deployed endpoint security agents. The sheer volume of disclosed issues underscores the challenges inherent in maintaining security across such a vast ecosystem of interconnected devices and software solutions, requiring rigorous patch management and continuous monitoring to mitigate potential exploitation by threat actors targeting critical network infrastructure.

Found 25 results / 3192Clear Filters
Top products by Cisco: Cisco Small Business RV Series Router Firmware Cisco IOS XE Software Cisco Adaptive Security Appliance (ASA) Software Cisco Identity Services Engine Software Cisco Firepower Management Center Cisco IOS XR Software Cisco Firepower Threat Defense Software Cisco NX-OS Software Cisco Data Center Network Manager Cisco SD-WAN vManage Cisco SD-WAN Solution Cisco Webex Meetings Cisco Unified Communications Manager Cisco Prime Infrastructure IOS Cisco Enterprise NFV Infrastructure Software Cisco IOS Cisco Catalyst SD-WAN Manager Cisco WebEx WRF Player Cisco Digital Network Architecture Center (DNA Center) Cisco Email Security Appliance (ESA) Cisco Unified Contact Center Express Cisco Aironet Access Point Software Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Cisco Unified Computing System (Managed) Cisco Application Policy Infrastructure Controller (APIC) Cisco Unity Connection Cisco Wireless LAN Controller (WLC) Cisco Web Security Appliance (WSA) Cisco AnyConnect Secure Mobility Client
CVE IDTitleCVSSSeverityPublished
CVE-2026-20107 Cisco Application Policy Infrastructure Controller Denial of Service Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-1220 5.5 Medium2026-02-25
CVE-2025-20119 Cisco Application Policy Infrastructure Controller Authenticated Local Denial of Service Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-362 6.0 Medium2025-02-26
CVE-2025-20118 Cisco Application Policy Infrastructure Controller Authenticated Command Injection Due to Sensitive Disclosure Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-212 4.4 Medium2025-02-26
CVE-2025-20117 Cisco Application Policy Infrastructure Controller Authenticated Command Injection Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-77 5.1 Medium2025-02-26
CVE-2025-20116 Cisco Application Policy Infrastructure Controller Stored Cross-Site Scripting Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-79 4.8 Medium2025-02-26
CVE-2024-20478 Cisco Application Policy Infrastructure Controller App Privilege Escalation Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-250 6.5 Medium2024-08-28
CVE-2024-20279 Cisco Application Policy Infrastructure Controller Unauthorized Policy Actions Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-284 4.3 Medium2024-08-28
CVE-2023-20230 Cisco Application Policy Infrastructure Controller 安全漏洞 — Cisco Application Policy Infrastructure Controller (APIC)CWE-284 5.4 Medium2023-08-23
CVE-2023-20011 Cisco Application Policy Infrastructure Controller and Cisco Cloud Network Controller Cross-Site Request Forgery Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-352 8.8 High2023-02-23
CVE-2021-1582 Cisco Application Policy Infrastructure Controller Stored Cross-Site Scripting Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-79 5.4 Medium2021-08-25
CVE-2021-1581 Cisco Application Policy Infrastructure Controller Command Injection and File Upload Vulnerabilities — Cisco Application Policy Infrastructure Controller (APIC)CWE-284 6.5 Medium2021-08-25
CVE-2021-1580 Cisco Application Policy Infrastructure Controller Command Injection and File Upload Vulnerabilities — Cisco Application Policy Infrastructure Controller (APIC)CWE-284 6.5 Medium2021-08-25
CVE-2021-1579 Cisco Application Policy Infrastructure Controller App Privilege Escalation Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-250 8.1 High2021-08-25
CVE-2021-1578 Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-636 8.8 High2021-08-25
CVE-2021-1577 Cisco Application Policy Infrastructure Controller Arbitrary File Read and Write Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-284 9.1 Critical2021-08-25
CVE-2020-3335 Cisco Application Services Engine Software Authorization Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-306 5.5 -2020-06-03
CVE-2020-3333 Cisco Application Services Engine Software Unauthenticated Event Policies Update Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-306 5.3 -2020-06-03
CVE-2020-3139 Cisco Application Policy Infrastructure Controller Out Of Band Management IP Tables Bypass Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-20 5.3 -2020-01-26
CVE-2019-1889 Cisco Application Policy Infrastructure Controller REST API Privilege Escalation Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-264 7.2 -2019-07-04
CVE-2019-1838 Cisco Application Policy Infrastructure Controller Web-Based Management Interface Cross-Site Scripting Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-79 5.4 -2019-05-03
CVE-2019-1692 Cisco Application Policy Infrastructure Controller Web-Based Management Interface Usage Information Disclosure Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-200 5.3 -2019-05-03
CVE-2019-1682 Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-264 7.8 -2019-05-03
CVE-2019-1586 Cisco Application Policy Infrastructure Controller Recoverable Encryption Key Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-320 4.6 -2019-05-03
CVE-2019-1587 Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Filter Query Information Disclosure Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-399 4.3 -2019-05-03
CVE-2019-1690 Cisco Application Policy Infrastructure Controller IPv6 Link-Local Address Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-284 8.3 -2019-03-11

This page lists every published CVE security advisory associated with Cisco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.