Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Cisco — Vulnerabilities & Security Advisories 3188

Browse all 3188 CVE security advisories affecting Cisco. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cisco Systems operates as a global leader in networking hardware, software, and telecommunications services, providing critical infrastructure for enterprise connectivity and cloud security. With over 3,000 recorded CVEs, the company’s attack surface is extensive, reflecting the complexity of its diverse product portfolio. Historically, vulnerabilities frequently involve remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from legacy protocols or complex configuration interfaces. Notable incidents include the 2023 supply chain compromise affecting the Cisco AnyConnect Secure Mobility Client, which allowed attackers to bypass authentication mechanisms. These breaches highlight risks associated with widely deployed endpoint security agents. The sheer volume of disclosed issues underscores the challenges inherent in maintaining security across such a vast ecosystem of interconnected devices and software solutions, requiring rigorous patch management and continuous monitoring to mitigate potential exploitation by threat actors targeting critical network infrastructure.

Top products by Cisco: Cisco Small Business RV Series Router Firmware Cisco IOS XE Software Cisco Adaptive Security Appliance (ASA) Software Cisco Identity Services Engine Software Cisco Firepower Management Center Cisco IOS XR Software Cisco Firepower Threat Defense Software Cisco NX-OS Software Cisco Data Center Network Manager Cisco SD-WAN vManage Cisco SD-WAN Solution Cisco Webex Meetings Cisco Unified Communications Manager Cisco Prime Infrastructure IOS Cisco Enterprise NFV Infrastructure Software Cisco IOS Cisco WebEx WRF Player Cisco Digital Network Architecture Center (DNA Center) Cisco Catalyst SD-WAN Manager Cisco Email Security Appliance (ESA) Cisco Unified Contact Center Express Cisco Aironet Access Point Software Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Cisco Unified Computing System (Managed) Cisco Application Policy Infrastructure Controller (APIC) Cisco Unity Connection Cisco Wireless LAN Controller (WLC) Cisco Web Security Appliance (WSA) Cisco AnyConnect Secure Mobility Client
CVE IDTitleCVSSSeverityPublished
CVE-2025-20171 Cisco多款产品 安全漏洞 — IOS 7.7 High2025-02-05
CVE-2025-20176 Cisco IOS和Cisco IOS XE 安全漏洞 — IOS 7.7 High2025-02-05
CVE-2025-20172 Cisco IOS、Cisco IOS XE和Cisco IOS XR 安全漏洞 — IOS 7.7 High2025-02-05
CVE-2025-20173 Cisco IOS和Cisco IOS XE 安全漏洞 — IOS 7.7 High2025-02-05
CVE-2025-20207 Cisco Secure Email Gateway, Cisco Secure Email and Web Appliance and Cisco Secure Web Appliance SNMP Polling Information Disclosure Vulnerability — Cisco Secure EmailCWE-200 4.3 Medium2025-02-05
CVE-2025-20205 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability — Cisco Identity Services Engine SoftwareCWE-79 4.8 Medium2025-02-05
CVE-2025-20204 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability — Cisco Identity Services Engine SoftwareCWE-79 4.8 Medium2025-02-05
CVE-2025-20185 Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Privilege Escalation Vulnerability — Cisco Secure EmailCWE-250 3.4 Low2025-02-05
CVE-2025-20184 Cisco Secure Email and Web Manager and Secure Web Appliance Command Injection Vulnerability — Cisco Secure EmailCWE-20 6.5 Medium2025-02-05
CVE-2025-20183 Cisco Secure Web Appliance Range Request Bypass Vulnerability — Cisco Secure Web ApplianceCWE-20 5.8 Medium2025-02-05
CVE-2025-20180 Cisco Secure Email and Web Manager and Secure Email Gateway Cross-Site Scripting Vulnerability — Cisco Secure EmailCWE-79 4.8 Medium2025-02-05
CVE-2025-20179 Cisco Expressway Series Cross-Site Scripting Vulnerability — Cisco TelePresence Video Communication Server (VCS) ExpresswayCWE-79 6.1 Medium2025-02-05
CVE-2025-20125 Cisco Identity Services Engine Insufficient Authorization Bypass Vulnerability — Cisco Identity Services Engine SoftwareCWE-285 9.1 Critical2025-02-05
CVE-2025-20124 Cisco Identity Services Engine Java Deserialization Vulnerability — Cisco Identity Services Engine SoftwareCWE-502 9.9 Critical2025-02-05
CVE-2025-20165 Cisco BroadWorks SIP Denial of Service Vulnerability — Cisco BroadWorksCWE-789 7.5 High2025-01-22
CVE-2025-20156 Cisco Meeting Management Client-Server Privilege Escalation Vulnerability — Cisco Meeting ManagementCWE-274 9.9 Critical2025-01-22
CVE-2025-20128 ClamAV OLE2 File Format Decryption Denial of Service Vulnerability — Cisco Secure EndpointCWE-122 5.3 Medium2025-01-22
CVE-2025-20168 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerability — Cisco Common Services Platform Collector SoftwareCWE-86 5.4 Medium2025-01-08
CVE-2025-20167 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerability — Cisco Common Services Platform Collector SoftwareCWE-86 5.4 Medium2025-01-08
CVE-2025-20166 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerability — Cisco Common Services Platform Collector SoftwareCWE-86 5.4 Medium2025-01-08
CVE-2025-20126 Cisco ThousandEyes Endpoint Agent Certificate Validation Vulnerability — Cisco ThousandEyes Endpoint AgentCWE-295 4.8 Medium2025-01-08
CVE-2025-20123 Cisco Crosswork Network Controller Stored Cross-Site Scripting Vulnerability — Cisco Crosswork Network Change AutomationCWE-79 4.8 Medium2025-01-08
CVE-2024-20397 Cisco NX-OS Software Image Verification Bypass Vulnerability — Cisco NX-OS SoftwareCWE-284 5.2 Medium2024-12-04
CVE-2020-26066 Cisco SD-WAN vManage Software XML External Entity Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-611 7.3 -2024-11-18
CVE-2020-26067 Cisco Webex Teams Web Interface Cross-Site Scripting Vulnerability — Cisco Webex TeamsCWE-80 5.4 Medium2024-11-18
CVE-2020-26062 Cisco Integrated Management Controller Username Enumeration Vulnerability — Cisco Unified Computing System (Managed)CWE-203 5.3 Medium2024-11-18
CVE-2020-26063 Cisco Integrated Management Controller Software Authorization Bypass Vulnerability — Cisco Unified Computing System (Managed)CWE-269 5.4 Medium2024-11-18
CVE-2020-26071 Cisco SD-WAN vEdge Arbitrary File Creation Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-22 8.4 High2024-11-18
CVE-2020-27124 Cisco Adaptive Security Appliance Software SSL/TLS Denial of Service Vulnerability — Cisco Adaptive Security Appliance (ASA) SoftwareCWE-457 8.6 High2024-11-18
CVE-2020-3420 Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability — Cisco Unified Communications ManagerCWE-79 5.4 -2024-11-18

This page lists every published CVE security advisory associated with Cisco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.