cisco

6,751 tracked vulnerabilities.

CVE-2024-20432 CRITICAL
Cisco Nexus Dashboard Fabric Controller - Command Injection
Oct 02, 2024
CVSS 9.9
EPSS 0.03
CVE-2024-20393 HIGH
Cisco Small Business RV340-345 - Privilege Escalation
Oct 02, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-20385 MEDIUM
Cisco Nexus Dashboard Orchestrator - Info Disclosure
Oct 02, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-20365 MEDIUM
Cisco Unified Computing System - Authenticated Command Injection via Redfish API
Oct 02, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-20510 MEDIUM
Cisco IOS XE - Unauthenticated Access Control Bypass via Central Web Authentication
Sep 25, 2024
CVSS 4.7
EPSS 0.00
CVE-2024-20508 MEDIUM
Cisco Unified Threat Defense Snort IPS Engine - Unauthenticated Denial of Service via Crafted HTTP Request
Sep 25, 2024
CVSS 5.8
EPSS 0.00
CVE-2024-20496 MEDIUM
Cisco SD-WAN vEdge Cloud - Unauthenticated Denial of Service via Malformed UDP Packet
Sep 25, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-20480 HIGH
Cisco IOS XE - Denial of Service via DHCP Snooping IPv4 Packet Handling
Sep 25, 2024
CVSS 8.6
EPSS 0.01
CVE-2024-20475 MEDIUM
Cisco Catalyst SD-WAN Manager - XSS
Sep 25, 2024
CVSS 6.4
EPSS 0.00
CVE-2024-20467 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via IPv4 Fragment Reassembly
Sep 25, 2024
CVSS 8.6
EPSS 0.17
CVE-2024-20465 MEDIUM
Cisco Industrial Ethernet - Auth Bypass
Sep 25, 2024
CVSS 5.8
EPSS 0.00
CVE-2024-20464 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Crafted PIMv2 Packet
Sep 25, 2024
CVSS 8.6
EPSS 0.00
CVE-2024-20455 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via SD-WAN IPsec Tunnel Traffic Handling
Sep 25, 2024
CVSS 8.6
EPSS 0.01
CVE-2024-20437 HIGH
Cisco IOS XE - Unauthenticated Cross-Site Request Forgery via Web-Based Management Interface
Sep 25, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-20436 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via HTTP Server Null Pointer Dereference
Sep 25, 2024
CVSS 8.6
EPSS 0.02
CVE-2024-20434 MEDIUM
Cisco IOS XE - Unauthenticated Denial of Service via VLAN Tag Frame Handling
Sep 25, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-20433 HIGH
Cisco IOS - Unauthenticated Denial of Service via RSVP Packet Buffer Overflow
Sep 25, 2024
CVSS 8.6
EPSS 0.01
CVE-2024-20414 MEDIUM
Cisco IOS XE - Unauthenticated Cross-Site Request Forgery via HTTP GET Method
Sep 25, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-20350 HIGH
Cisco Catalyst Center - Impersonation
Sep 25, 2024
CVSS 7.5
EPSS 0.03
CVE-2024-20430 HIGH
Cisco Meraki Systems Manager - Code Injection
Sep 12, 2024
CVSS 7.3
EPSS 0.00
CVE-2024-20489 HIGH
Cisco IOS XR - Authenticated MongoDB Credential Exposure via PON Controller Configuration File
Sep 11, 2024
CVSS 8.4
EPSS 0.00
CVE-2024-20483 HIGH
Cisco Routed PON Controller Software - Command Injection
Sep 11, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-20406 HIGH
Cisco IOS XR 6.8.1-6.9.9 - Unauthenticated Denial of Service via IS-IS Packet Input Validation
Sep 11, 2024
CVSS 7.4
EPSS 0.00
CVE-2024-20398 HIGH
Cisco IOS XR - Privilege Escalation
Sep 11, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-20390 MEDIUM
Cisco IOS XR < 24.1.2 - Unauthenticated Denial of Service via XML TCP Port 38751
Sep 11, 2024
CVSS 5.3
EPSS 0.00
Products
ios 613 ios_xe 541 adaptive_security_appliance_software 348 nx-os 275 unified_communications_manager 238 firepower_threat_defense 230 ios_xr 193 secure_firewall_management_center 182 identity_services_engine 165 webex_meetings_server 136 rv110w_firmware 128 rv130w_firmware 127 unified_computing_system 105 prime_infrastructure 88 wireless_lan_controller_software 88 catalyst_sd-wan_manager 85 application_extension_platform 79 rv215w_firmware 71 anyconnect_secure_mobility_client 69 data_center_network_manager 68 rv215w_wireless-n_vpn_router_firmware 68 webex_meetings 68 web_security_appliance 65 adaptive_security_appliance 63 unity_connection 63 rv130_vpn_router_firmware 62 rv130_firmware 59 webex_meetings_online 59 firepower_extensible_operating_system 56 asyncos 54
Quick Filters
Critical CVEs With Exploits In CISA KEV