cisco

6,780 tracked vulnerabilities.

CVE-2022-31734 MEDIUM
Cisco Catalyst 2940 Series Switches < 12.2(50)SY - Reflected Cross-Site Scripting via Error Page
Jun 20, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-20825 CRITICAL
Cisco RV110W, RV130, RV130W, RV215W Routers - Unauthenticated RCE via HTTP Input Validation
Jun 15, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-20819 MEDIUM
Cisco Identity Services Engine - Authenticated Sensitive Information Exposure via Web Management Interface
Jun 15, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-20817 HIGH
Cisco Unified IP Phones - Privilege Escalation
Jun 15, 2022
CVSS 7.4
EPSS 0.01
CVE-2022-20798 CRITICAL
Cisco Secure Email and Web Manager - Auth Bypass
Jun 15, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-20736 MEDIUM
Cisco AppDynamics Controller Software - Info Disclosure
Jun 15, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-20733 MEDIUM
Cisco Identity Services Engine - Unauthenticated Authentication Bypass via SAML Metadata Exposure
Jun 15, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-20664 HIGH
Cisco Secure Email and Web Manager - Info Disclosure
Jun 15, 2022
CVSS 7.7
EPSS 0.01
CVE-2022-20807 MEDIUM
Cisco TelePresence VCS < X14.0.7 - Authenticated Sensitive Info Disclosure via Log File Insertion
May 27, 2022
CVSS 4.3
EPSS 0.01
CVE-2022-20806 MEDIUM
Cisco TelePresence VCS < X14.0.7 Authenticated Sensitive Info Disclosure via Log File Insertion
May 27, 2022
CVSS 4.3
EPSS 0.01
CVE-2022-20802 MEDIUM
Cisco Enterprise Chat and Email < 12.6(1)es2 - Authenticated Stored Cross-Site Scripting
May 27, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-20797 MEDIUM
Cisco Secure Network Analytics - Command Injection
May 27, 2022
CVSS 5.5
EPSS 0.02
CVE-2022-20765 MEDIUM
Cisco UCS Director < 6.6 - Authenticated Cross-Site Scripting via User Input
May 27, 2022
CVSS 4.8
EPSS 0.01
CVE-2022-20674 MEDIUM
Cisco Common Services Platform Collector < 2.10.0.2 - Unauthenticated Cross-Site Scripting
May 27, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-20673 MEDIUM
Cisco Common Services Platform Collector < 2.10.0.2 - Unauthenticated Cross-Site Scripting
May 27, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-20672 MEDIUM
Cisco Common Services Platform Collector < 2.10.0.2 - Unauthenticated Cross-Site Scripting
May 27, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-20671 MEDIUM
Cisco Common Services Platform Collector < 2.10.0.2 - Unauthenticated Cross-Site Scripting
May 27, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-20670 MEDIUM
Cisco Common Services Platform Collector < 2.10.0.2 - Unauthenticated Cross-Site Scripting
May 27, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-20669 MEDIUM
Cisco Common Services Platform Collector < 2.10.0.2 - Unauthenticated Cross-Site Scripting
May 27, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-20668 MEDIUM
Cisco Common Services Platform Collector < 2.10.0.2 - Unauthenticated Cross-Site Scripting
May 27, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-20667 MEDIUM
Cisco Common Services Platform Collector < 2.10.0.2 - Unauthenticated Cross-Site Scripting
May 27, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-20666 MEDIUM
Cisco Common Services Platform Collector < 2.10.0.2 - Unauthenticated Cross-Site Scripting
May 27, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-20821 MEDIUM KEV
Cisco IOS XR - Unauthenticated Redis Instance Exposure via Health Check RPM
May 26, 2022
CVSS 6.5
EPSS 0.12
CVE-2022-20809 MEDIUM
Cisco TelePresence VCS < X14.0.7 Authenticated Info Disclosure via Log File Insertion
May 26, 2022
CVSS 4.3
EPSS 0.01
CVE-2022-20801 MEDIUM
Cisco RV340, RV340W, RV345, RV345P Firmware < 1.0.03.27 - Authenticated OS Command Injection
May 04, 2022
CVSS 4.7
EPSS 0.02