cisco

6,780 tracked vulnerabilities.

CVE-2025-20133 HIGH
Cisco Secure Firewall ASA/FTD - DoS
Aug 14, 2025
CVSS 8.6
EPSS 0.01
CVE-2025-20127 HIGH
Cisco Secure Firewall ASA and FTD - Denial of Service via TLS 1.3 CHACHA20_POLY1305_SHA256 Cipher
Aug 14, 2025
CVSS 7.7
EPSS 0.01
CVE-2025-20332 MEDIUM
Cisco Identity Services Engine Software - Authenticated Incorrect Authorization via Crafted HTTP Request
Aug 06, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-20331 MEDIUM
Cisco Identity Services Engine Software - Authenticated Stored Cross-Site Scripting
Aug 06, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-20215 MEDIUM
Cisco Webex Meetings - Privilege Escalation
Aug 06, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-20337 CRITICAL KEV
Cisco Identity Services Engine - Unauthenticated Remote Code Execution via API Request
Jul 16, 2025
CVSS 10.0
EPSS 0.65
CVE-2025-20288 MEDIUM
Cisco Unified Intelligence Center - SSRF
Jul 16, 2025
CVSS 5.8
EPSS 0.00
CVE-2025-20285 MEDIUM
Cisco ISE/Cisco ISE-PIC - Auth Bypass
Jul 16, 2025
CVSS 4.1
EPSS 0.00
CVE-2025-20284 MEDIUM
Cisco Identity Services Engine - Authenticated Remote Code Execution via API Request
Jul 16, 2025
CVSS 6.5
EPSS 0.13
CVE-2025-20283 MEDIUM
Cisco Identity Services Engine - Authenticated Remote Code Execution via API Request
Jul 16, 2025
CVSS 6.5
EPSS 0.07
CVE-2025-20274 MEDIUM
Cisco Unified Intelligence Center - File Upload
Jul 16, 2025
CVSS 6.3
EPSS 0.00
CVE-2025-20272 MEDIUM
Cisco Prime Infrastructure/EPNM - SQL Injection
Jul 16, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-20309 CRITICAL
Cisco Unified Communications Manager - Unauthenticated Remote Code Execution via Hard-coded Root Credentials
Jul 02, 2025
CVSS 10.0
EPSS 0.01
CVE-2025-20307 MEDIUM
Cisco BroadWorks CommPilot Application Software < RI.2025.05 - Authenticated Stored Cross-Site Scripting
Jul 02, 2025
CVSS 4.8
EPSS 0.00
CVE-2025-20310 MEDIUM
Cisco Enterprise Chat and Email < 12.6(1)ES11 - Stored Cross-Site Scripting
Jul 02, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-20308 MEDIUM
Cisco Spaces Connector - Privilege Escalation
Jul 02, 2025
CVSS 6.0
EPSS 0.00
CVE-2025-20282 CRITICAL
Cisco Identity Services Engine and ISE-PIC - Unauthenticated Arbitrary File Upload and Remote Code Execution
Jun 25, 2025
CVSS 10.0
EPSS 0.10
CVE-2025-20281 CRITICAL KEVNUCLEI
Cisco Identity Services Engine - Unauthenticated Remote Code Execution via API Request
Jun 25, 2025
CVSS 10.0
EPSS 0.97
CVE-2025-20264 MEDIUM
Cisco Identity Services Engine - Authenticated Authorization Bypass via SAML SSO User
Jun 25, 2025
CVSS 6.4
EPSS 0.00
CVE-2025-20271 HIGH
Cisco Meraki MX Firmware - Unauthenticated Denial of Service via Crafted HTTPS Requests
Jun 18, 2025
CVSS 8.6
EPSS 0.00
CVE-2025-20234 MEDIUM
ClamAV 1.2.0-1.4.3 - Denial of Service via UDF File Scanning
Jun 18, 2025
CVSS 5.3
EPSS 0.01
CVE-2025-20286 CRITICAL
Cisco Identity Services Engine - Unauthenticated Sensitive Data Access via Shared Cloud Credentials
Jun 04, 2025
CVSS 9.9
EPSS 0.01
CVE-2025-20279 MEDIUM
Cisco Unified Contact Center Express - Authenticated Stored Cross-Site Scripting
Jun 04, 2025
CVSS 4.8
EPSS 0.00
CVE-2025-20278 MEDIUM
Cisco Unified Communications - Command Injection
Jun 04, 2025
CVSS 6.0
EPSS 0.00
CVE-2025-20277 LOW
Cisco Unified CCX - Authenticated RCE
Jun 04, 2025
CVSS 3.4
EPSS 0.00