Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

cisco — Vulnerabilities & Security Advisories 3188

Browse all 3188 CVE security advisories affecting cisco. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cisco Systems operates as a global leader in networking hardware, software, and telecommunications services, providing critical infrastructure for enterprise connectivity and cloud security. With over 3,000 recorded CVEs, the company’s attack surface is extensive, reflecting the complexity of its diverse product portfolio. Historically, vulnerabilities frequently involve remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from legacy protocols or complex configuration interfaces. Notable incidents include the 2023 supply chain compromise affecting the Cisco AnyConnect Secure Mobility Client, which allowed attackers to bypass authentication mechanisms. These breaches highlight risks associated with widely deployed endpoint security agents. The sheer volume of disclosed issues underscores the challenges inherent in maintaining security across such a vast ecosystem of interconnected devices and software solutions, requiring rigorous patch management and continuous monitoring to mitigate potential exploitation by threat actors targeting critical network infrastructure.

Top products by cisco: Cisco Small Business RV Series Router Firmware Cisco IOS XE Software Cisco Adaptive Security Appliance (ASA) Software Cisco Identity Services Engine Software Cisco Firepower Management Center Cisco IOS XR Software Cisco Firepower Threat Defense Software Cisco NX-OS Software Cisco Data Center Network Manager Cisco SD-WAN vManage Cisco SD-WAN Solution Cisco Webex Meetings Cisco Unified Communications Manager Cisco Prime Infrastructure IOS Cisco Enterprise NFV Infrastructure Software Cisco IOS Cisco WebEx WRF Player Cisco Digital Network Architecture Center (DNA Center) Cisco Catalyst SD-WAN Manager Cisco Email Security Appliance (ESA) Cisco Unified Contact Center Express Cisco Aironet Access Point Software Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Cisco Unified Computing System (Managed) Cisco Application Policy Infrastructure Controller (APIC) Cisco Unity Connection Cisco Wireless LAN Controller (WLC) Cisco Web Security Appliance (WSA) Cisco AnyConnect Secure Mobility Client
CVE IDTitleCVSSSeverityPublished
CVE-2024-20381 Cisco Network Services Orchestrator Configuration Update Authorization Bypass Vulnerability — Cisco IOS XR SoftwareCWE-285 8.8 High2024-09-11
CVE-2024-20317 Cisco IOS XR Software Layer 2 Services Denial of Service Vulnerability — Cisco IOS XR SoftwareCWE-684 7.4 High2024-09-11
CVE-2024-20398 Cisco IOS XR Software Local Privilege Escalation Vulnerability — Cisco IOS XR SoftwareCWE-78 8.8 High2024-09-11
CVE-2024-20390 Cisco IOS XR Software Dedicated XML Agent TCP Denial of Service Vulnerability — Cisco IOS XR SoftwareCWE-940 5.3 Medium2024-09-11
CVE-2024-20343 Cisco IOS XR Software CLI Arbitrary File Read Vulnerability — Cisco IOS XR SoftwareCWE-284 5.5 Medium2024-09-11
CVE-2024-20506 ClamAV Privilege Handling Escalation Vulnerability — ClamAV 6.1 Medium2024-09-04
CVE-2024-20505 ClamAV Memory Handling DoS — ClamAV 4.0 Medium2024-09-04
CVE-2024-20497 Cisco Expressway Edge Improper Authorization Vulnerability — Cisco TelePresence Video Communication Server (VCS) ExpresswayCWE-285 4.3 Medium2024-09-04
CVE-2024-20503 Cisco Duo Epic for Hyperdrive Information Disclosure Vulnerability — Cisco Duo Authentication for EpicCWE-200 5.5 Medium2024-09-04
CVE-2024-20469 Cisco Identity Services Engine Command Injection Vulnerability — Cisco Identity Services Engine SoftwareCWE-78 6.0 Medium2024-09-04
CVE-2024-20440 Cisco Smart Licensing Utility 安全漏洞 — Cisco Smart License UtilityCWE-532 7.5 High2024-09-04
CVE-2024-20439 Cisco Smart Licensing Utility 安全漏洞 — Cisco Smart License UtilityCWE-912 9.8 Critical2024-09-04
CVE-2024-20284 Cisco NX-OS Software Python Parser Escape Vulnerability — Cisco NX-OS SoftwareCWE-693 5.3 Medium2024-08-28
CVE-2024-20285 Cisco NX-OS Software Python Parser Escape Vulnerability — Cisco NX-OS SoftwareCWE-653 5.3 Medium2024-08-28
CVE-2024-20286 Cisco NX-OS Software Python Parser Escape Vulnerability — Cisco NX-OS SoftwareCWE-693 5.3 Medium2024-08-28
CVE-2024-20446 Cisco NX-OS Software DHCPv6 Relay Agent Denial of Service Vulnerability — Cisco NX-OS SoftwareCWE-476 8.6 High2024-08-28
CVE-2024-20289 Cisco NX-OS Software Command Injection Vulnerability — Cisco NX-OS SoftwareCWE-78 4.4 Medium2024-08-28
CVE-2024-20478 Cisco Application Policy Infrastructure Controller App Privilege Escalation Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-250 6.5 Medium2024-08-28
CVE-2024-20411 Cisco NX-OS Bash Arbitrary Code Execution Vulnerability — Cisco NX-OS SoftwareCWE-267 6.7 Medium2024-08-28
CVE-2024-20413 Cisco NX-OS Bash Privilege Escalation Vulnerability — Cisco NX-OS SoftwareCWE-862 6.7 Medium2024-08-28
CVE-2024-20279 Cisco Application Policy Infrastructure Controller Unauthorized Policy Actions Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)CWE-284 4.3 Medium2024-08-28
CVE-2024-20417 Cisco Identity Services Engine REST API Blind SQL Injection Vulnerabities — Cisco Identity Services Engine SoftwareCWE-89 6.5 Medium2024-08-21
CVE-2024-20466 Cisco Identity Services Engine Sensitive Information Disclosure Vulnerability — Cisco Identity Services Engine SoftwareCWE-266 6.5 Medium2024-08-21
CVE-2024-20486 Cisco Identity Services Engine Cross-Site Request Forgery Vulnerability — Cisco Identity Services Engine SoftwareCWE-352 6.5 Medium2024-08-21
CVE-2024-20488 Cisco Unified Communications Manager Cross-Site Scripting Vulnerability — Cisco Unified Communications ManagerCWE-79 6.1 Medium2024-08-21
CVE-2024-20375 Cisco Unified Communications Manager 安全漏洞 — Cisco Unified Communications ManagerCWE-787 8.6 High2024-08-21
CVE-2024-20451 Cisco Small Business SPA300 Series IP Phones和Cisco Small Business SPA500 Series IP Phones 安全漏洞 — Cisco Small Business IP PhonesCWE-120 7.5 High2024-08-07
CVE-2024-20454 Cisco Small Business SPA500 Series IP Phones和Cisco Small Business 安全漏洞 — Cisco Small Business IP PhonesCWE-120 9.8 Critical2024-08-07
CVE-2024-20450 Cisco Small Business SPA300 Series IP Phones和Cisco Small Business SPA500 Series IP Phones 安全漏洞 — Cisco Small Business IP PhonesCWE-120 9.8 Critical2024-08-07
CVE-2024-20479 Cisco Identity Services Engine 安全漏洞 — Cisco Identity Services Engine SoftwareCWE-79 4.8 Medium2024-08-07

This page lists every published CVE security advisory associated with cisco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.