cisco
6,780 tracked vulnerabilities.
CVE-2024-20293
MEDIUM
Cisco Adaptive Security Appliance and Firepower Threat Defense - Unauthenticated Access Control List Bypass
May 22, 2024
CVSS 5.8
EPSS 0.00
CVE-2024-20261
MEDIUM
Cisco Firepower Threat Defense - Info Disclosure
May 22, 2024
CVSS 5.8
EPSS 0.00
CVE-2024-20389
HIGH
Cisco ConfD/Crosswork - Privilege Escalation
May 16, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-20326
HIGH
Cisco ConfD/Crosswork - Privilege Escalation
May 16, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-20394
MEDIUM
Cisco AppDynamics Network Visibility Agent - DoS
May 15, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-20392
MEDIUM
Cisco AsyncOS - Unauthenticated HTTP Response Splitting via Web Management API
May 15, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-20391
MEDIUM
Cisco Secure Client - Privilege Escalation
May 15, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-20383
MEDIUM
Cisco AsyncOS < 15.5.1-024 - Authenticated Stored Cross-Site Scripting
May 15, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-20369
MEDIUM
Cisco Crosswork NSO - Open Redirect
May 15, 2024
CVSS 4.7
EPSS 0.00
CVE-2024-20366
HIGH
Cisco Crosswork NSO - Privilege Escalation
May 15, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-20258
MEDIUM
Cisco AsyncOS < 15.0.2-034 - Unauthenticated Stored Cross-Site Scripting
May 15, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-20257
MEDIUM
Cisco AsyncOS - Authenticated Stored Cross-Site Scripting
May 15, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-20256
MEDIUM
Cisco AsyncOS - Authenticated Stored Cross-Site Scripting
May 15, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-3661
HIGH
FortiClient 6.4.0-7.2.4 - Unauthenticated VPN Traffic Leak via DHCP Classless Static Route Option
May 06, 2024
CVSS 7.6
EPSS 0.04
CVE-2024-20378
HIGH
Cisco IP Phone 6821/6841/6851/6861/6871/7811 < 12.0.4 - Unauthenticated Information Disclosure
May 01, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-20376
HIGH
Cisco IP Phone Multiplatform Firmware < 12.0.4 - Unauthenticated Denial of Service via Web Interface Input
May 01, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-20357
MEDIUM
Cisco IP Phone Multiplatform Firmware < 12.0.4 - Unauthenticated Out-of-bounds Write via XML Request Parsing
May 01, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-20313
HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Malformed OSPFv2 Update
Apr 24, 2024
CVSS 7.4
EPSS 0.00
CVE-2024-20358
MEDIUM
Cisco ASA/FTD - Privilege Escalation
Apr 24, 2024
CVSS 6.0
EPSS 0.01
CVE-2024-20356
HIGH
Cisco Unified Computing System (Standalone) - Authenticated OS Command Injection
Apr 24, 2024
CVSS 8.7
EPSS 0.33
CVE-2024-20295
HIGH
Cisco Unified Computing System <=3.0(3f) Authenticated OS Command Injection via CLI
Apr 24, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-20359
MEDIUM
KEV
Cisco ASA/FTD - Privilege Escalation
Apr 24, 2024
CVSS 6.0
EPSS 0.19
CVE-2024-20353
HIGH
KEV
Cisco Adaptive Security Appliance Software - Denial of Service via HTTP Header Parsing
Apr 24, 2024
CVSS 8.6
EPSS 0.71
CVE-2024-20368
MEDIUM
Cisco Identity Services Engine 2.7.0-3.0.0 - Cross-Site Request Forgery
Apr 03, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-20367
MEDIUM
Cisco Enterprise Chat and Email 12.5(1)-12.5(1)es9 - Authenticated Stored Cross-Site Scripting
Apr 03, 2024
CVSS 5.4
EPSS 0.00
Products
ios 613
ios_xe 541
adaptive_security_appliance_software 351
nx-os 275
unified_communications_manager 239
firepower_threat_defense 230
ios_xr 196
secure_firewall_management_center 182
identity_services_engine 175
webex_meetings_server 136
rv110w_firmware 132
rv130w_firmware 131
unified_computing_system 105
catalyst_sd-wan_manager 91
prime_infrastructure 89
wireless_lan_controller_software 88
application_extension_platform 79
rv215w_firmware 71
anyconnect_secure_mobility_client 69
webex_meetings 69
data_center_network_manager 68
rv215w_wireless-n_vpn_router_firmware 68
unity_connection 65
web_security_appliance 65
adaptive_security_appliance 63
rv130_firmware 63
rv130_vpn_router_firmware 62
webex_meetings_online 59
firepower_extensible_operating_system 56
asyncos 54
Quick Filters