cisco

6,751 tracked vulnerabilities.

CVE-2022-20915 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via IPv6 VPN over MPLS with Zone-Based Firewall
Oct 10, 2022
CVSS 7.4
EPSS 0.00
CVE-2022-20870 HIGH
Cisco IOS XE - Denial of Service via Malformed MPLS Egress Packet
Oct 10, 2022
CVSS 8.6
EPSS 0.00
CVE-2022-20864 MEDIUM
Cisco IOS XE ROM Monitor - Unauthenticated Sensitive Information Exposure via Console Commands
Oct 10, 2022
CVSS 4.6
EPSS 0.00
CVE-2022-20837 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via DNS ALG TCP Packet Inspection
Oct 10, 2022
CVSS 8.6
EPSS 0.01
CVE-2022-20830 MEDIUM
Cisco Catalyst SD-WAN Manager 20.4-20.6.1 and SD-WAN vManage 18.4-20.3.4.1 - Unauthenticated GUI Access via SD-AVC
Oct 10, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-20945 HIGH
Cisco Catalyst 9800 Series Firmware 17.6-17.6.4 DoS via 802.11 Association Frame
Sep 30, 2022
CVSS 7.4
EPSS 0.00
CVE-2022-20930 MEDIUM
Cisco SD-WAN Software < 20.6.2 - Authenticated Arbitrary File Write via CLI Command Injection
Sep 30, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-20919 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Malformed CIP Packet
Sep 30, 2022
CVSS 8.6
EPSS 0.01
CVE-2022-20856 HIGH
Cisco IOS XE Wireless Controller Software for Catalyst 9000 - Denial of Service via CAPWAP Mobility Message Handling
Sep 30, 2022
CVSS 8.6
EPSS 0.01
CVE-2022-20855 HIGH
Cisco IOS XE for Embedded Wireless Controllers - Authenticated OS Command Injection via Self-Healing Functionality
Sep 30, 2022
CVSS 7.9
EPSS 0.00
CVE-2022-20851 MEDIUM
Cisco IOS XE - Authenticated OS Command Injection via Web UI API
Sep 30, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-20850 MEDIUM
Cisco SD-WAN vBond, vManage, vSmart & IOS XE SD-WAN - Authenticated Arbitrary File Deletion via CLI
Sep 30, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-20848 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via UDP Datagram Processing
Sep 30, 2022
CVSS 8.6
EPSS 0.02
CVE-2022-20847 HIGH
Cisco IOS XE Wireless Controller Software for Catalyst 9000 - DoS via DHCP Message Processing
Sep 30, 2022
CVSS 8.6
EPSS 0.01
CVE-2022-20844 MEDIUM
Cisco SD-WAN - Unauthenticated Use of Hard-coded Credentials in SD-AVC GUI
Sep 30, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-20818 HIGH
Cisco SD-WAN < 20.9 - Authenticated Privilege Escalation via CLI Command Injection
Sep 30, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-20810 MEDIUM
Cisco IOS XE Wireless Controller Software - Info Disclosure
Sep 30, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-20775 HIGH KEV
Cisco SD-WAN Software - Privilege Escalation
Sep 30, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-20769 HIGH
Cisco Wireless LAN Controller - DoS
Sep 30, 2022
CVSS 7.4
EPSS 0.00
CVE-2022-20728 MEDIUM
Cisco Aironet and Catalyst Access Points - Unauthenticated VLAN Bypass via Native VLAN Packet Injection
Sep 30, 2022
CVSS 4.7
EPSS 0.00
CVE-2022-20662 MEDIUM
Cisco Duo for macOS < 2.0.0 - Unauthenticated Authentication Bypass via Smart Card Login
Sep 30, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-20923 MEDIUM
Cisco RV110W RV130 RV130W RV215W - Unauthenticated IPSec VPN Authentication Bypass via Password Validation Algorithm
Sep 08, 2022
CVSS 4.0
EPSS 0.00
CVE-2022-20863 MEDIUM
Cisco Webex App < 42.7 - Unauthenticated Link Manipulation via Character Rendering
Sep 08, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-20696 HIGH
Cisco SD-WAN vManage - Info Disclosure
Sep 08, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-20921 HIGH
Cisco ACI Multi-Site Orchestrator < 3.1(1n) - Authenticated Privilege Escalation via API
Aug 25, 2022
CVSS 8.8
EPSS 0.01
Products
ios 613 ios_xe 541 adaptive_security_appliance_software 348 nx-os 275 unified_communications_manager 238 firepower_threat_defense 230 ios_xr 193 secure_firewall_management_center 182 identity_services_engine 165 webex_meetings_server 136 rv110w_firmware 128 rv130w_firmware 127 unified_computing_system 105 prime_infrastructure 88 wireless_lan_controller_software 88 catalyst_sd-wan_manager 85 application_extension_platform 79 rv215w_firmware 71 anyconnect_secure_mobility_client 69 data_center_network_manager 68 rv215w_wireless-n_vpn_router_firmware 68 webex_meetings 68 web_security_appliance 65 adaptive_security_appliance 63 unity_connection 63 rv130_vpn_router_firmware 62 rv130_firmware 59 webex_meetings_online 59 firepower_extensible_operating_system 56 asyncos 54
Quick Filters
Critical CVEs With Exploits In CISA KEV