78 Total CVEs
48 AI Analyzed
17 CISA KEV
25 Critical
All Vendors
Showing 1-78 of 78 CVEs
CVE-2026-5944
8.2
Cisco Intersight Device

An improper access control vulnerability exists in the Cisco Intersight Device Connector for Nutanix Prism Central

2026-04-29
CVE-2026-20262
KEV Analyzed
9.5
Cisco Catalyst SD-WAN Manager

Cisco Catalyst SD-WAN Manager contains an arbitrary file write vulnerability in its web UI, allowing authenticated remote attackers to escalate privil...

2026-06-16
CVE-2026-20245
KEV Analyzed
9.5
Cisco Catalyst SD-WAN Manager

A command injection and privilege escalation vulnerability exists in the CLI of Cisco Catalyst SD-WAN Manager due to insufficient input validation.

2026-06-10
CVE-2026-20230
KEV Analyzed
8.6
Cisco Unified Communications Manager (Unified CM)

A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM S...

2026-06-04
CVE-2026-20224
8.6
Cisco Catalyst SD

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to read arbit...

2026-05-15
CVE-2026-20223
Analyzed
10
Cisco Secure Workload

Cisco Secure Workload contains an access validation flaw in internal REST APIs that permits unauthenticated, remote attackers to perform unauthorized...

2026-05-21
CVE-2026-20186
Analyzed
9.9
Cisco Identity Services

A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying...

2026-04-16
CVE-2026-20184
Analyzed
9.8
Cisco Webex Services

A vulnerability in the integration of single sign-on (SSO) with Control Hub in Cisco Webex Services could have allowed an unauthenticated, remote atta...

2026-04-16
CVE-2026-20182
KEV Analyzed
10
Cisco Catalyst SD

May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and fixed after the was disclosed i...

2026-05-15
CVE-2026-20180
Analyzed
9.9
Cisco Identity Services

A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying...

2026-04-16
CVE-2026-20160
Analyzed
9.8
Cisco Smart Software

The exposure of an internal service in Cisco SSM On-Prem allows unauthenticated remote attackers to execute arbitrary commands with root privileges vi...

2026-04-02
CVE-2026-20155
8
Cisco Evolved Programmable

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attack...

2026-04-02
CVE-2026-20147
Analyzed
9.9
Cisco ISE and

A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating...

2026-04-16
CVE-2026-20133
KEV
9.5
Cisco Catalyst SD-WAN Manager

Cisco Catalyst SD-WAN Manager Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - Active in CISA KEV catalog.

2026-04-21
CVE-2026-20131
KEV Analyzed
10
Cisco Secure Firewall

A critical insecure deserialization flaw in the Cisco FMC web interface allows unauthenticated remote attackers to execute arbitrary Java code with ro...

2026-03-05
CVE-2026-20128
KEV
7.5
Cisco Catalyst SD

A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker to gain DCA u...

2026-02-26
CVE-2026-20127
KEV Analyzed
10
Cisco Catalyst SD

A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly...

2026-02-26
CVE-2026-20126
Analyzed
8.8
Cisco Catalyst SD

A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with low privileges to gain root privileges on the under...

2026-02-26
CVE-2026-20125
7.7
Cisco IOS Software

A vulnerability in the HTTP Server feature of Cisco IOS Software and Cisco IOS XE Software Release 3E could allow an authenticated, remote attacker to...

2026-03-26
CVE-2026-20122
KEV
9.5
Cisco Catalyst SD-WAN Manger

Cisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability - Active in CISA KEV catalog.

2026-04-21
CVE-2026-20119
Analyzed
7.5
Cisco TelePresence Collaboration

A vulnerability in the text rendering subsystem of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an un...

2026-02-05
CVE-2026-20105
Analyzed
7.7
Cisco Secure Firewall

A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Thr...

2026-03-05
CVE-2026-20103
Analyzed
8.6
Cisco Secure Firewall

A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Thr...

2026-03-05
CVE-2026-20101
8.6
Cisco Secure Firewall

A vulnerability in the SAML 2

2026-03-05
CVE-2026-20100
Analyzed
7.7
Cisco Secure Firewall

A vulnerability in the LUA interperter of the Remote Access SSL VPN feature of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Se...

2026-03-05
CVE-2026-20098
Analyzed
8.8
Cisco Meeting Management

A vulnerability in the Certificate Management feature of Cisco Meeting Management could allow an authenticated, remote attacker to upload arbitrary fi...

2026-02-05
CVE-2026-20094
8.8
Cisco IMC could

A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with read-only privileges to perform...

2026-04-02
CVE-2026-20093
Analyzed
9.8
Cisco Integrated Management

An authentication bypass in Cisco IMC's password change functionality allows unauthenticated remote attackers to reset any user's password and gain ad...

2026-04-02
CVE-2026-20086
Analyzed
8.6
Cisco IOS XE

A vulnerability in the processing of Control and Provisioning of Wireless Access Points (CAPWAP) packets of Cisco IOS XE Wireless Controller Software...

2026-03-26
CVE-2026-20084
Analyzed
8.6
Cisco IOS XE

A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause BOOTP packets to be for...

2026-03-26
CVE-2026-20082
8.6
Cisco Secure Firewall

A vulnerability in the handling of the embryonic connection limits in Cisco Secure Firewall Adaptive Security Appliance (ASA) Software could allow an...

2026-03-05
CVE-2026-20079
Analyzed
10
Cisco Secure Firewall

An improper system process at boot time in Cisco FMC allows unauthenticated attackers to bypass authentication and execute scripts via HTTP requests t...

2026-03-05
CVE-2026-20062
7.2
Cisco Secure Firewall

A vulnerability in the CLI of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software in multiple context mode could allow an authenticated,...

2026-03-05
CVE-2026-20051
Analyzed
7.4
Cisco Nexus

A vulnerability with the Ethernet VPN (EVPN) Layer 2 ingress packet processing of Cisco Nexus 3600 Platform Switches and Cisco Nexus 9500-R Series Swi...

2026-02-26
CVE-2026-20048
Analyzed
7.7
Cisco Nexus

A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authe...

2026-02-26
CVE-2026-20046
Analyzed
8.8
Cisco IOS XR

A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to elevate p...

2026-03-12
CVE-2026-20045
KEV Analyzed
8.2
Cisco Multiple Products

A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME)...

2026-01-22
CVE-2026-20040
Analyzed
8.8
Cisco IOS XR

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary commands as root on the underlyi...

2026-03-12
CVE-2026-20039
8.6
Cisco Secure Firewall

A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FT...

2026-03-05
CVE-2026-20034
8.8
Cisco Unity Connection

A vulnerability in the web-based management interface of Cisco Unity Connection could allow an authenticated, remote attacker to execute arbitrary cod...

2026-05-07
CVE-2026-20033
7.4
Cisco Nexus

A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, adjacent attacker to cause a denial of service...

2026-02-26
CVE-2026-20014
7.7
Cisco Secure Firewall

A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an authenticated, remote attacker...

2026-03-05
CVE-2026-20010
7.4
Cisco NX

A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause...

2026-02-26
CVE-2026-20002
Analyzed
8.1
Cisco Secure FMC

A vulnerability in the web-based management interface of Cisco Secure FMC Software could allow an authenticated, remote attacker to conduct SQL inject...

2026-03-05
CVE-2026-10880
Analyzed
9.8
Cisco QuantaStor SDS Manager

A SQL injection vulnerability in the OSNexus QuantaStor SDS Manager login endpoint allows unauthenticated attackers to bypass authentication.

2026-06-05
CVE-2025-70047
7.5
Cisco Multiple Products

An issue pertaining to CWE-400: Uncontrolled Resource Consumption was discovered in Nexusoft NexusInterface v3

2026-03-10
CVE-2025-20393
KEV
10
Cisco Multiple Products

Cisco is aware of a potential vulnerability.  Cisco is currently investigating and will update these details as appropriate as more inf...

2025-12-18
CVE-2025-20363
Analyzed
9
Cisco Multiple Products

A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software, Cisco Secure Firewall Threat Defense (FTD) So...

2025-09-25
CVE-2025-20362
KEV
9.5
Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense

Cisco Secure Firewall Adaptive Security (ASA) Appliance and Secure Firewall Threat Defense (FTD) Missing Authorization Vulnerability - Active in CISA...

2025-09-25
CVE-2025-20352
KEV Analyzed
7.7
Cisco Multiple Products

A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software and Cisco IOS XE Software could allow the following:...

2025-09-24
CVE-2025-20350
7.5
Cisco Multiple Products

A vulnerability in the web UI of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 running Cisco SIP Softw...

2025-10-16
CVE-2025-20343
Analyzed
8.6
Cisco Multiple Products

A vulnerability in the RADIUS setting Reject RADIUS requests from clients with repeated failures on Cisco Identity Services Engine (ISE) could allow a...

2025-11-06
CVE-2025-20341
Analyzed
8.8
Cisco Multiple Products

A vulnerability in Cisco Catalyst Center Virtual Appliance could allow an authenticated, remote attacker to elevate privileges to Administrator on an...

2025-11-14
CVE-2025-20337
KEV Analyzed
10
Cisco Multiple Products

A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, remote attacker to execute arbitrary code on the unde...

2025-07-16
CVE-2025-20334
Analyzed
8.8
Cisco Multiple Products

A vulnerability in the HTTP API subsystem of Cisco IOS XE Software could allow a remote attacker to inject commands that will execute with root privil...

2025-09-24
CVE-2025-20333
KEV
9.9
Cisco Multiple Products

A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FT...

2025-09-25
CVE-2025-20327
Analyzed
7.7
Cisco Multiple Products

A vulnerability in the web UI of Cisco IOS Software could allow an authenticated, remote attacker with low privileges to cause a denial of service (Do...

2025-09-24
CVE-2025-20317
Analyzed
7.1
Cisco Multiple Products

A vulnerability in the Virtual Keyboard Video Monitor (vKVM) connection handling of Cisco Integrated Management Controller (IMC) could allow an unauth...

2025-08-27
CVE-2025-20315
Analyzed
8.6
Cisco Multiple Products

A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker t...

2025-09-24
CVE-2025-20312
Analyzed
7.7
Cisco Multiple Products

A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE Software could allow an authenticated, remote attacker to c...

2025-09-24
CVE-2025-20311
Analyzed
7.4
Cisco Multiple Products

A vulnerability in the handling of certain Ethernet frames in Cisco IOS XE Software for Catalyst 9000 Series Switches could allow an unauthenticated,...

2025-09-24
CVE-2025-20309
Analyzed
10
Cisco Multiple Products

A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM S...

2025-07-05
CVE-2025-20281
KEV
9.5
Cisco Identity Services Engine

Cisco Identity Services Engine Injection Vulnerability - Active in CISA KEV catalog.

2025-07-28
CVE-2025-20265
Analyzed
10
Cisco Multiple Products

A vulnerability in the RADIUS subsystem implementation of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remot...

2025-08-14
CVE-2025-20263
8.6
Cisco Multiple Products

A vulnerability in the web services interface of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Def...

2025-08-14
CVE-2025-20253
Analyzed
8.6
Cisco Multiple Products

A vulnerability in the IKEv2 feature of Cisco IOS Software, IOS XE Software, Secure Firewall ASA Software, and Secure FTD Software could allow an unau...

2025-08-14
CVE-2025-20251
Analyzed
8.5
Cisco Multiple Products

A vulnerability in the Remote Access SSL VPN service for Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Th...

2025-08-14
CVE-2025-20244
7.7
Cisco Multiple Products

A vulnerability in the Remote Access SSL VPN service for Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Th...

2025-08-14
CVE-2025-20243
8.6
Cisco Multiple Products

A vulnerability in the management and VPN web servers of Cisco Secure Firewall ASA Software and Secure FTD Software could allow an unauthenticated, re...

2025-08-14
CVE-2025-20241
Analyzed
7.4
Cisco Multiple Products

A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cis...

2025-08-27
CVE-2025-20222
8.6
Cisco Multiple Products

A vulnerability in the RADIUS proxy feature for the IPsec VPN feature of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Se...

2025-08-14
CVE-2025-20217
8.6
Cisco Multiple Products

A vulnerability in the packet inspection functionality of the Snort 3 Detection Engine of Cisco Secure Firewall Threat Defense (FTD) Software could al...

2025-08-14
CVE-2025-20160
Analyzed
8.1
Cisco Multiple Products

A vulnerability in the implementation of the TACACS+ protocol in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote a...

2025-09-24
CVE-2025-20148
8.5
Cisco Multiple Products

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote a...

2025-08-14
CVE-2025-20136
Analyzed
8.6
Cisco Multiple Products

A vulnerability in the function that performs IPv4 and IPv6 Network Address Translation (NAT) DNS inspection for Cisco Secure Firewall Adaptive Securi...

2025-08-14
CVE-2025-20134
8.6
Cisco Multiple Products

A vulnerability in the certificate processing of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Def...

2025-08-14
CVE-2025-20133
Analyzed
8.6
Cisco Multiple Products

A vulnerability in the management and VPN web servers of the Remote Access SSL VPN feature of Cisco Secure Firewall ASA Software and Secure FTD Softwa...

2025-08-14
CVE-2022-20775
KEV
9.5
Cisco SD-WAN

Cisco SD-WAN Path Traversal Vulnerability - Active in CISA KEV catalog.

2026-02-26