cisco

6,787 tracked vulnerabilities.

CVE-2021-34775 MEDIUM
Cisco Small Business 220 Series Smart Switches < 1.2.0.6 - Unauthenticated Buffer Overflow in LLDP Implementation
Oct 06, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-34772 MEDIUM
Cisco Orbital - Unauthenticated Open Redirect via Web Management Interface
Oct 06, 2021
CVSS 4.7
EPSS 0.01
CVE-2021-34766 MEDIUM
Cisco Smart Software Manager On-Prem < 8-202108 - Authenticated Privilege Escalation via Web UI
Oct 06, 2021
CVSS 5.4
EPSS 0.01
CVE-2021-34758 MEDIUM
Cisco TelePresence Collaboration Endpoint < 10.7.2 & RoomOS < 10.7.1.2 - DoS via Shared Memory Corruption
Oct 06, 2021
CVSS 4.4
EPSS 0.00
CVE-2021-34757 MEDIUM
Cisco Business 220 Series - Privilege Escalation
Oct 06, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-34748 HIGH
Cisco Intersight Virtual Appliance 1.0.9-150-1.0.9-292 - Authenticated OS Command Injection
Oct 06, 2021
CVSS 8.8
EPSS 0.03
CVE-2021-34744 MEDIUM
Cisco Business 220 Series - Privilege Escalation
Oct 06, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-34742 MEDIUM
Cisco Vision Dynamic Signage Director < 6.4 - Unauthenticated Stored Cross-Site Scripting
Oct 06, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-34735 HIGH
Cisco ATA 190 Series Firmware - Remote Code Execution and Denial of Service
Oct 06, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-34711 MEDIUM
Cisco IP Phone Firmware < 14.1(1) - Authenticated Arbitrary File Read via Debug Shell Command
Oct 06, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-34710 HIGH
Cisco ATA 190 Series Firmware - OS Command Injection and Denial of Service
Oct 06, 2021
CVSS 8.8
EPSS 0.03
CVE-2021-34706 MEDIUM
Cisco Identity Services Engine - XML External Entity Injection via Crafted XML File Upload
Oct 06, 2021
CVSS 6.4
EPSS 0.01
CVE-2021-34702 MEDIUM
Cisco Identity Services Engine 2.2.0-2.5.9 - Authenticated Sensitive Information Exposure via Web Management Interface
Oct 06, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-34698 HIGH
Cisco AsyncOS 12.0-12.0.3-005 - Unauthenticated Denial of Service via HTTPS Connection Exhaustion
Oct 06, 2021
CVSS 8.6
EPSS 0.01
CVE-2021-1594 HIGH
Cisco Identity Services Engine 2.4.0-2.5.9 - Unauthenticated OS Command Injection via REST API
Oct 06, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-1534 MEDIUM
Cisco AsyncOS < 14.0.1 - Unauthenticated URL Filter Bypass via Crafted URL
Oct 06, 2021
CVSS 5.8
EPSS 0.01
CVE-2021-34770 CRITICAL
Cisco IOS XE - Unauthenticated Remote Code Execution or Denial of Service via CAPWAP Packet Validation
Sep 23, 2021
CVSS 10.0
EPSS 0.03
CVE-2021-34769 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via CAPWAP Packet Processing
Sep 23, 2021
CVSS 8.6
EPSS 0.01
CVE-2021-34768 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via CAPWAP Packet Processing
Sep 23, 2021
CVSS 8.6
EPSS 0.01
CVE-2021-34767 HIGH
Cisco IOS XE Wireless Controller Software - Unauthenticated Denial of Service via IPv6 Traffic Processing
Sep 23, 2021
CVSS 7.4
EPSS 0.01
CVE-2021-34740 HIGH
Cisco Aironet Access Point Software - Denial of Service via WCP 802.11 Frame Handling
Sep 23, 2021
CVSS 7.4
EPSS 0.00
CVE-2021-34729 MEDIUM
Cisco IOS XE and IOS XE SD-WAN < 17.3.1a - Authenticated OS Command Injection via CLI Arguments
Sep 23, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-34727 CRITICAL
Cisco IOS XE SD-WAN - Unauthenticated Remote Code Execution via vDaemon Traffic Processing
Sep 23, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-34726 MEDIUM
Cisco SD-WAN < 18.4.6 - Authenticated OS Command Injection via CLI
Sep 23, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-34725 MEDIUM
Cisco IOS XE SD-WAN < 17.2.1r - Authenticated OS Command Injection via CLI
Sep 23, 2021
CVSS 6.7
EPSS 0.00