Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

cisco — Vulnerabilities & Security Advisories 3206

Browse all 3206 CVE security advisories affecting cisco. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cisco Systems operates as a global leader in networking hardware, software, and telecommunications services, providing critical infrastructure for enterprise connectivity and cloud security. With over 3,000 recorded CVEs, the company’s attack surface is extensive, reflecting the complexity of its diverse product portfolio. Historically, vulnerabilities frequently involve remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from legacy protocols or complex configuration interfaces. Notable incidents include the 2023 supply chain compromise affecting the Cisco AnyConnect Secure Mobility Client, which allowed attackers to bypass authentication mechanisms. These breaches highlight risks associated with widely deployed endpoint security agents. The sheer volume of disclosed issues underscores the challenges inherent in maintaining security across such a vast ecosystem of interconnected devices and software solutions, requiring rigorous patch management and continuous monitoring to mitigate potential exploitation by threat actors targeting critical network infrastructure.

Top products by cisco: Cisco Small Business RV Series Router Firmware Cisco IOS XE Software Cisco Adaptive Security Appliance (ASA) Software Cisco Identity Services Engine Software Cisco Firepower Management Center Cisco IOS XR Software Cisco Firepower Threat Defense Software Cisco NX-OS Software Cisco Data Center Network Manager Cisco SD-WAN vManage Cisco SD-WAN Solution Cisco Unified Communications Manager Cisco Webex Meetings Cisco Prime Infrastructure IOS Cisco Enterprise NFV Infrastructure Software Cisco IOS Cisco Catalyst SD-WAN Manager Cisco WebEx WRF Player Cisco Digital Network Architecture Center (DNA Center) Cisco Email Security Appliance (ESA) Cisco Aironet Access Point Software Cisco Unified Contact Center Express Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Cisco Unified Computing System (Managed) Cisco Application Policy Infrastructure Controller (APIC) Cisco Unity Connection Cisco Wireless LAN Controller (WLC) Cisco Web Security Appliance (WSA) Cisco AnyConnect Secure Mobility Client
CVE IDTitleCVSSSeverityPublished
CVE-2025-20125 Cisco Identity Services Engine Insufficient Authorization Bypass Vulnerability — Cisco Identity Services Engine SoftwareCWE-285 9.1 Critical2025-02-05
CVE-2025-20124 Cisco Identity Services Engine Java Deserialization Vulnerability — Cisco Identity Services Engine SoftwareCWE-502 9.9 Critical2025-02-05
CVE-2025-20165 Cisco BroadWorks SIP Denial of Service Vulnerability — Cisco BroadWorksCWE-789 7.5 High2025-01-22
CVE-2025-20156 Cisco Meeting Management Client-Server Privilege Escalation Vulnerability — Cisco Meeting ManagementCWE-274 9.9 Critical2025-01-22
CVE-2025-20128 ClamAV OLE2 File Format Decryption Denial of Service Vulnerability — Cisco Secure EndpointCWE-122 5.3 Medium2025-01-22
CVE-2025-20168 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerability — Cisco Common Services Platform Collector SoftwareCWE-86 5.4 Medium2025-01-08
CVE-2025-20167 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerability — Cisco Common Services Platform Collector SoftwareCWE-86 5.4 Medium2025-01-08
CVE-2025-20166 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerability — Cisco Common Services Platform Collector SoftwareCWE-86 5.4 Medium2025-01-08
CVE-2025-20126 Cisco ThousandEyes Endpoint Agent Certificate Validation Vulnerability — Cisco ThousandEyes Endpoint AgentCWE-295 4.8 Medium2025-01-08
CVE-2025-20123 Cisco Crosswork Network Controller Stored Cross-Site Scripting Vulnerability — Cisco Crosswork Network Change AutomationCWE-79 4.8 Medium2025-01-08
CVE-2024-20397 Cisco NX-OS Software Image Verification Bypass Vulnerability — Cisco NX-OS SoftwareCWE-284 5.2 Medium2024-12-04
CVE-2020-26066 Cisco SD-WAN vManage Software XML External Entity Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-611 7.3 -2024-11-18
CVE-2020-26067 Cisco Webex Teams Web Interface Cross-Site Scripting Vulnerability — Cisco Webex TeamsCWE-80 5.4 Medium2024-11-18
CVE-2020-26062 Cisco Integrated Management Controller Username Enumeration Vulnerability — Cisco Unified Computing System (Managed)CWE-203 5.3 Medium2024-11-18
CVE-2020-26063 Cisco Integrated Management Controller Software Authorization Bypass Vulnerability — Cisco Unified Computing System (Managed)CWE-269 5.4 Medium2024-11-18
CVE-2020-26071 Cisco SD-WAN vEdge Arbitrary File Creation Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-22 8.4 High2024-11-18
CVE-2020-27124 Cisco Adaptive Security Appliance Software SSL/TLS Denial of Service Vulnerability — Cisco Adaptive Security Appliance (ASA) SoftwareCWE-457 8.6 High2024-11-18
CVE-2020-3420 Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability — Cisco Unified Communications ManagerCWE-79 5.4 -2024-11-18
CVE-2020-3431 Cisco Small Business RV Series Routers Cross-Site Scripting Vulnerability — Cisco Small Business RV Series Router FirmwareCWE-79 6.1 Medium2024-11-18
CVE-2020-26073 Cisco SD-WAN vManage Directory Traversal Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-35 7.5 High2024-11-18
CVE-2020-26074 Cisco SD-WAN vManage Privilege Escalation Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-250 7.8 High2024-11-18
CVE-2020-3525 Cisco Identity Services Engine Password Disclosure to an Unauthorized Actor Vulnerability — Cisco Identity Services Engine SoftwareCWE-200 4.9 -2024-11-18
CVE-2020-3532 Cisco Unified Communications Products Cross-Site Scripting Vulnerability — Cisco Unity ConnectionCWE-79 6.1 -2024-11-18
CVE-2020-3538 Cisco Data Center Network Manager Path Traversal Vulnerability — Cisco Data Center Network ManagerCWE-20 4.6 Medium2024-11-18
CVE-2020-3539 Cisco Data Center Network Manager Authorization Bypass Vulnerability — Cisco Data Center Network ManagerCWE-285 6.3 Medium2024-11-18
CVE-2020-3548 Cisco Email Security Appliance Denial Of Service Vulnerability — Cisco Secure EmailCWE-407 5.3 Medium2024-11-18
CVE-2021-1234 Cisco SD-WAN vManage Information Disclosure Vulnerabilities — Cisco Catalyst SD-WAN ManagerCWE-497 5.3 Medium2024-11-18
CVE-2021-1132 Cisco Network Services Orchestrator Path Traversal Vulnerability — Cisco Network Services OrchestratorCWE-35 5.3 Medium2024-11-18
CVE-2021-1379 Cisco IP Phones Cisco Discovery Protocol and Link Layer Discovery Protocol Remote Code Execution and Denial of Service Vulnerabilities — Cisco IP Phones with Multiplatform FirmwareCWE-120 6.5 Medium2024-11-18
CVE-2021-1285 Multiple Cisco Products SNORT Ethernet Frame Decoder Denial of Service Vulnerability — Cisco UTD SNORT IPS Engine SoftwareCWE-770 7.4 -2024-11-18

This page lists every published CVE security advisory associated with cisco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.