cisco
6,780 tracked vulnerabilities.
CVE-2024-20488
MEDIUM
Cisco Unified Communications Manager - Unauthenticated Stored Cross-Site Scripting via Web Interface
Aug 21, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-20375
HIGH
Cisco Unified Communications Manager - DoS
Aug 21, 2024
CVSS 8.6
EPSS 0.01
CVE-2024-20479
MEDIUM
Cisco Identity Services Engine - Authenticated Stored Cross-Site Scripting in Web Management Interface
Aug 07, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-20454
CRITICAL
Cisco SPA300/SPA500 IP Phones - Remote Code Execution via HTTP Buffer Overflow
Aug 07, 2024
CVSS 9.8
EPSS 0.07
CVE-2024-20451
HIGH
Cisco Small Business SPA300 and SPA500 Series IP Phones - Unauthenticated Denial of Service via Crafted HTTP Packet
Aug 07, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-20450
CRITICAL
Cisco SPA300/SPA500 IP Phones - Unauthenticated RCE via HTTP Buffer Overflow
Aug 07, 2024
CVSS 9.8
EPSS 0.07
CVE-2024-20443
MEDIUM
Cisco Identity Services Engine - Authenticated Stored Cross-Site Scripting
Aug 07, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-20435
HIGH
Cisco AsyncOS - Authenticated Privilege Escalation via CLI Command Injection
Jul 17, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-20429
MEDIUM
Cisco AsyncOS for Secure Email Gateway - Authenticated Remote Code Execution via Web Interface
Jul 17, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-20419
CRITICAL
NUCLEI
Cisco Smart Software Manager (SSM) On-Prem Account Takeover (CVE-2024-20419)
Jul 17, 2024
CVSS 10.0
EPSS 0.81
CVE-2024-20416
MEDIUM
Cisco Small Business RV Series Router Firmware - Authenticated RCE via HTTP Request Boundary Check Bypass
Jul 17, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-20401
CRITICAL
Cisco Secure Email Gateway - File Overwrite
Jul 17, 2024
CVSS 9.8
EPSS 0.02
CVE-2024-20400
MEDIUM
Cisco Expressway Series - Open Redirect
Jul 17, 2024
CVSS 4.7
EPSS 0.00
CVE-2024-20396
MEDIUM
Cisco Webex App - Unauthenticated Exposure of Sensitive Information via File Protocol Handler
Jul 17, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-20395
MEDIUM
Cisco Webex App - Unprotected Transport of Credentials via Embedded Media Retrieval
Jul 17, 2024
CVSS 6.4
EPSS 0.00
CVE-2024-20323
HIGH
Cisco Intelligent Node - TLS Hijack
Jul 17, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-20296
MEDIUM
Cisco Identity Services Engine - Authenticated Arbitrary File Upload
Jul 17, 2024
CVSS 4.7
EPSS 0.00
CVE-2024-20456
MEDIUM
Cisco IOS XR - Privilege Escalation
Jul 10, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-20399
MEDIUM
KEV
Cisco NX-OS Software - Command Injection
Jul 01, 2024
CVSS 6.0
EPSS 0.04
CVE-2024-20405
MEDIUM
Cisco Finesse - Stored Cross-Site Scripting via RFI in Web Management Interface
Jun 05, 2024
CVSS 4.8
EPSS 0.01
CVE-2024-20404
HIGH
NUCLEI
Cisco Finesse - Unauthenticated Server-Side Request Forgery
Jun 05, 2024
CVSS 7.2
EPSS 0.22
CVE-2024-20360
HIGH
Cisco Firepower Management Center - SQL Injection
May 22, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-20363
MEDIUM
Cisco Firepower Threat Defense Snort IPS Engine Unauthenticated Rule Bypass via HTTP Packets
May 22, 2024
CVSS 5.8
EPSS 0.00
CVE-2024-20361
MEDIUM
Cisco Firepower Management Center - Auth Bypass
May 22, 2024
CVSS 5.8
EPSS 0.00
CVE-2024-20355
MEDIUM
Cisco ASA/FTD - Privilege Escalation
May 22, 2024
CVSS 5.0
EPSS 0.00
Products
ios 613
ios_xe 541
adaptive_security_appliance_software 351
nx-os 275
unified_communications_manager 239
firepower_threat_defense 230
ios_xr 196
secure_firewall_management_center 182
identity_services_engine 175
webex_meetings_server 136
rv110w_firmware 132
rv130w_firmware 131
unified_computing_system 105
catalyst_sd-wan_manager 91
prime_infrastructure 89
wireless_lan_controller_software 88
application_extension_platform 79
rv215w_firmware 71
anyconnect_secure_mobility_client 69
webex_meetings 69
data_center_network_manager 68
rv215w_wireless-n_vpn_router_firmware 68
unity_connection 65
web_security_appliance 65
adaptive_security_appliance 63
rv130_firmware 63
rv130_vpn_router_firmware 62
webex_meetings_online 59
firepower_extensible_operating_system 56
asyncos 54
Quick Filters