Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

cisco — Vulnerabilities & Security Advisories 3196

Browse all 3196 CVE security advisories affecting cisco. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cisco Systems operates as a global leader in networking hardware, software, and telecommunications services, providing critical infrastructure for enterprise connectivity and cloud security. With over 3,000 recorded CVEs, the company’s attack surface is extensive, reflecting the complexity of its diverse product portfolio. Historically, vulnerabilities frequently involve remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from legacy protocols or complex configuration interfaces. Notable incidents include the 2023 supply chain compromise affecting the Cisco AnyConnect Secure Mobility Client, which allowed attackers to bypass authentication mechanisms. These breaches highlight risks associated with widely deployed endpoint security agents. The sheer volume of disclosed issues underscores the challenges inherent in maintaining security across such a vast ecosystem of interconnected devices and software solutions, requiring rigorous patch management and continuous monitoring to mitigate potential exploitation by threat actors targeting critical network infrastructure.

Top products by cisco: Cisco Small Business RV Series Router Firmware Cisco IOS XE Software Cisco Adaptive Security Appliance (ASA) Software Cisco Identity Services Engine Software Cisco Firepower Management Center Cisco IOS XR Software Cisco Firepower Threat Defense Software Cisco NX-OS Software Cisco Data Center Network Manager Cisco SD-WAN vManage Cisco SD-WAN Solution Cisco Webex Meetings Cisco Unified Communications Manager Cisco Prime Infrastructure IOS Cisco Enterprise NFV Infrastructure Software Cisco IOS Cisco Catalyst SD-WAN Manager Cisco WebEx WRF Player Cisco Digital Network Architecture Center (DNA Center) Cisco Email Security Appliance (ESA) Cisco Unified Contact Center Express Cisco Aironet Access Point Software Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Cisco Unified Computing System (Managed) Cisco Application Policy Infrastructure Controller (APIC) Cisco Unity Connection Cisco Wireless LAN Controller (WLC) Cisco Web Security Appliance (WSA) Cisco AnyConnect Secure Mobility Client
CVE IDTitleCVSSSeverityPublished
CVE-2020-3299 Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability — Cisco Firepower Threat Defense SoftwareCWE-693 5.3 -2020-10-21
CVE-2020-3427 Duo Authentication for Windows Logon and RDP Privilege Escalation Vulnerability — Duo Authentication for Windows Logon and RDPCWE-280 6.6 Medium2020-10-14
CVE-2020-3483 Duo Network Gateway (DNG) Information Disclosure Vulnerability — Duo Network Gateway (DNG)CWE-256 7.1 High2020-10-14
CVE-2020-3602 Cisco StarOS Privilege Escalation Vulnerability — Cisco ASR 5000 Series SoftwareCWE-20 6.3 Medium2020-10-08
CVE-2020-3601 Cisco StarOS Privilege Escalation Vulnerability — Cisco ASR 5000 Series SoftwareCWE-20 4.4 Medium2020-10-08
CVE-2020-3598 Cisco Vision Dynamic Signage Director Missing Authentication Vulnerability — Cisco Vision Dynamic Signage DirectorCWE-306 6.5 Medium2020-10-08
CVE-2020-3597 Cisco Nexus Data Broker Software Path Traversal Vulnerability — Cisco Nexus Data BrokerCWE-23 5.4 Medium2020-10-08
CVE-2020-3596 Cisco Expressway Series and TelePresence Video Communication Server Denial of Service Vulnerability — Cisco TelePresence Video Communication Server (VCS) ExpresswayCWE-789 5.9 Medium2020-10-08
CVE-2020-3589 Cisco Identity Services Engine Cross-Site Scripting Vulnerability — Cisco Identity Services Engine SoftwareCWE-79 4.8 Medium2020-10-08
CVE-2020-3568 Cisco Email Security Appliance URL Filtering Bypass Vulnerability — Cisco Email Security Appliance (ESA)CWE-20 5.8 Medium2020-10-08
CVE-2020-3567 Cisco Industrial Network Director Denial of Service Vulnerability — Cisco Industrial Network DirectorCWE-20 6.5 Medium2020-10-08
CVE-2020-3544 Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Remote Code Execution and Denial of Service Vulnerability — Cisco Video Surveillance 8000 Series IP CamerasCWE-119 8.8 High2020-10-08
CVE-2020-3543 Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Memory Leak Vulnerability — Cisco Video Surveillance 8000 Series IP CamerasCWE-400 6.5 Medium2020-10-08
CVE-2020-3536 Cisco SD-WAN vManage Cross-Site Scripting Vulnerability — Cisco SD-WAN vManageCWE-79 5.4 -2020-10-08
CVE-2020-3535 Cisco Webex Teams Client for Windows DLL Hijacking Vulnerability — Cisco Webex TeamsCWE-427 7.8 High2020-10-08
CVE-2020-3467 Cisco Identity Services Engine Authorization Bypass Vulnerability — Cisco Identity Services Engine SoftwareCWE-863 8.5 -2020-10-08
CVE-2020-3320 Cisco Firepower Management Center Cross-Site Scripting Vulnerability — Cisco Firepower Management CenterCWE-79 5.4 -2020-10-08
CVE-2020-3141 Cisco IOS XE Software Privilege Escalation Vulnerabilities — Cisco IOS XE Software 16.1.1CWE-20 8.8 High2020-09-24
CVE-2020-3359 Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers Multicast DNS Denial of Service Vulnerability — Cisco IOS XE SoftwareCWE-20 8.6 -2020-09-24
CVE-2020-3390 Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Trap Denial of Service Vulnerability — Cisco IOS XE SoftwareCWE-20 7.4 -2020-09-24
CVE-2020-3393 Cisco IOS XE Software IOx Application Hosting Privilege Escalation Vulnerability — Cisco IOS XE SoftwareCWE-269 6.0 Medium2020-09-24
CVE-2020-3396 Cisco IOS XE Software IOx Guest Shell USB SSD Namespace Protection Privilege Escalation Vulnerability — Cisco IOS XE SoftwareCWE-284 6.8 Medium2020-09-24
CVE-2020-3399 Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerability — Cisco IOS XE SoftwareCWE-126 8.6 High2020-09-24
CVE-2020-3400 Cisco IOS XE Software Web UI Authorization Bypass Vulnerability — Cisco IOS XE SoftwareCWE-862 8.8 -2020-09-24
CVE-2020-3403 Cisco IOS XE Software Command Injection Vulnerability — Cisco IOS XE SoftwareCWE-78 7.8 -2020-09-24
CVE-2020-3404 Cisco IOS XE Software Consent Token Bypass Vulnerability — Cisco IOS XE SoftwareCWE-863 7.8 -2020-09-24
CVE-2020-3407 Cisco IOS XE Software RESTCONF and NETCONF-YANG Access Control List Denial of Service Vulnerability — Cisco IOS XE SoftwareCWE-476 8.6 -2020-09-24
CVE-2020-3408 Cisco IOS and IOS XE Software Split DNS Denial of Service Vulnerability — Cisco IOSCWE-185 8.6 -2020-09-24
CVE-2020-3409 Cisco IOS and IOS XE Software PROFINET Denial of Service Vulnerability — Cisco IOSCWE-20 7.4 -2020-09-24
CVE-2020-3414 Cisco IOS XE Software for Cisco 4461 Integrated Services Routers Denial of Service Vulnerability — Cisco IOS XE Software 17.1.1CWE-19 8.6 -2020-09-24

This page lists every published CVE security advisory associated with cisco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.