Cisco Security Vulnerabilities (CVEs)
Track 564 security vulnerabilities affecting Cisco products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability allows unauthenticated remote attackers to cause denial of service on Cisco TelePresence and RoomOS devices by sending crafted H.32...
Apr 21, 2022This vulnerability allows authenticated local attackers on Cisco Virtualized Infrastructure Manager (VIM) to access improperly protected configuration...
Apr 21, 2022An unauthenticated attacker on the same network can send crafted traffic to Cisco CGR1K routers, causing the integrated wireless access point to stop ...
Apr 15, 2022This vulnerability allows authenticated low-privileged users on Cisco SD-WAN vManage systems to escalate privileges to root by injecting commands into...
Apr 15, 2022This vulnerability allows unauthenticated remote attackers to cause Cisco ASR 9000 Series routers with Lightspeed-Plus line cards to reset by sending ...
Apr 15, 2022This vulnerability allows unauthenticated remote attackers to bypass authentication controls on Cisco Wireless LAN Controllers by using crafted creden...
Apr 15, 2022This vulnerability allows authenticated remote attackers with low privileges to cause denial of service on Cisco IOS XE devices by exhausting resource...
Apr 15, 2022This vulnerability allows an unauthenticated remote attacker to cause a denial of service (DoS) by sending crafted packets from the wired network to a...
Apr 15, 2022This vulnerability allows authenticated local attackers on Cisco Catalyst 9000 switches and wireless controllers to escalate privileges to level 15 (a...
Apr 15, 2022This vulnerability allows unauthenticated remote attackers to cause Cisco IOS XE devices with AppNav-XE feature enabled to reload, resulting in denial...
Apr 15, 2022This vulnerability allows unauthenticated remote attackers to cause Cisco Embedded Wireless Controllers with Catalyst Access Points to reload unexpect...
Apr 15, 2022This vulnerability in Cisco ISE's RADIUS feature allows an unauthenticated remote attacker to send crafted RADIUS requests, causing the system to stop...
Apr 6, 2022This vulnerability allows authenticated attackers with read/write privileges on Cisco Expressway Series and TelePresence VCS systems to write arbitrar...
Apr 6, 2022This vulnerability allows authenticated remote attackers to execute arbitrary commands with root privileges on Cisco NX-OS devices by sending crafted ...
Feb 23, 2022This vulnerability allows unauthenticated remote attackers to cause BFD traffic to be dropped on affected Cisco Nexus 9000 Series switches by sending ...
Feb 23, 2022This vulnerability in Cisco Email Security Appliance's DANE email verification allows unauthenticated remote attackers to cause denial of service by s...
Feb 17, 2022This critical vulnerability in Cisco Small Business RV series routers allows attackers to execute arbitrary code, bypass authentication, and cause den...
Feb 10, 2022This critical vulnerability in Cisco Small Business RV series routers allows unauthenticated remote attackers to execute arbitrary code with root priv...
Feb 10, 2022This critical vulnerability in Cisco Small Business RV series routers allows attackers to execute arbitrary code, bypass authentication, and cause den...
Feb 10, 2022This critical vulnerability in Cisco Small Business RV Series routers allows unauthenticated attackers to bypass authentication, execute arbitrary com...
Feb 10, 2022This critical vulnerability in Cisco Small Business RV Series routers allows attackers to bypass authentication, execute arbitrary commands with root ...
Feb 10, 2022Multiple critical vulnerabilities in Cisco Small Business RV Series routers allow attackers to execute arbitrary code, bypass authentication, and caus...
Feb 10, 2022This CVE describes multiple critical vulnerabilities in Cisco Small Business RV series routers that allow an attacker to execute arbitrary code, bypas...
Feb 10, 2022This critical vulnerability in Cisco Small Business routers allows unauthenticated remote attackers to execute arbitrary code, bypass authentication, ...
Feb 10, 2022This vulnerability allows authenticated Advanced Users to elevate their privileges to Administrator by exploiting insufficient server-side permission ...
Jan 14, 2022An unauthenticated remote attacker can send a malicious HTTPS request to Cisco ASA or FTD devices, causing them to reload and creating a denial of ser...
Jan 11, 2022CVE-2021-44228 (Log4Shell) is a critical remote code execution vulnerability in Apache Log4j2 that allows attackers to execute arbitrary code by explo...
Dec 10, 2021This vulnerability allows unauthenticated remote attackers to gain root access to Cisco Policy Suite systems by exploiting reused static SSH keys acro...
Nov 4, 2021Multiple vulnerabilities in Cisco Catalyst PON Series Switches ONT web management interface allow unauthenticated remote attackers to log in with defa...
Nov 4, 2021This critical vulnerability in Cisco Catalyst PON Series Switches ONT web management interface allows unauthenticated remote attackers to log in with ...
Nov 4, 2021This vulnerability allows unauthenticated remote attackers to replay intercepted session credentials to gain unauthorized administrative access to Cis...
Nov 4, 2021An unauthenticated remote attacker can send a malicious HTTPS request to Cisco ASA/FTD devices to trigger a denial of service condition, causing the d...
Oct 27, 2021This vulnerability in Cisco products with Snort3 configured allows unauthenticated remote attackers to cause denial of service by sending crafted IP p...
Oct 27, 2021This vulnerability allows unauthenticated remote attackers to cause a denial of service (DoS) by overwhelming Cisco ASA and FTD devices with excessive...
Oct 27, 2021This vulnerability in Cisco Firepower Threat Defense (FTD) Software allows unauthenticated remote attackers to cause denial of service by flooding SSH...
Oct 27, 2021This vulnerability allows authenticated attackers to perform directory traversal attacks on Cisco Firepower Management Center (FMC) Software via the w...
Oct 27, 2021This vulnerability allows authenticated local attackers to execute arbitrary code with root privileges on Linux and Mac OS systems running Cisco AnyCo...
Oct 6, 2021This vulnerability allows authenticated remote attackers to execute arbitrary commands with root privileges on Cisco Intersight Virtual Appliance by e...
Oct 6, 2021This vulnerability in Cisco ATA 190 Series Analog Telephone Adapters allows attackers to execute arbitrary commands on affected devices through comman...
Oct 6, 2021This vulnerability in Cisco ATA 190 Series Analog Telephone Adapters allows attackers to execute arbitrary commands on affected devices through comman...
Oct 6, 2021This vulnerability allows an unauthenticated remote attacker to execute arbitrary commands with root privileges on Cisco Identity Services Engine (ISE...
Oct 6, 2021This critical vulnerability in Cisco Catalyst 9000 wireless controllers allows unauthenticated remote attackers to execute arbitrary code with adminis...
Sep 23, 2021This vulnerability allows unauthenticated remote attackers to crash Cisco Catalyst 9000 wireless controllers by sending malformed CAPWAP packets, caus...
Sep 23, 2021An unauthenticated attacker on the same wireless network can send specially crafted 802.11 frames to Cisco Aironet Access Points, causing a memory lea...
Sep 23, 2021This vulnerability allows unauthenticated remote attackers to trigger a buffer overflow in Cisco IOS XE SD-WAN Software by sending crafted traffic. Su...
Sep 23, 2021This vulnerability allows an unauthenticated attacker on the same network segment to send specially crafted UDLD packets to Cisco networking devices, ...
Sep 23, 2021This vulnerability in Cisco IOS and IOS XE software allows authenticated remote attackers to trigger a device reload via a specific CLI command throug...
Sep 23, 2021This vulnerability allows authenticated remote attackers to cause a denial of service (DoS) on Cisco cBR-8 routers by overwhelming the SNMP punt handl...
Sep 23, 2021This vulnerability allows an unauthenticated attacker on the same network segment to send specially crafted Layer 2 frames to Cisco IOS XE routers, ca...
Sep 23, 2021An uninitialized variable in Cisco IOS XE Software's AAA function allows unauthenticated remote attackers to bypass NETCONF/RESTCONF authentication. T...
Sep 23, 2021Why Monitor Cisco Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 564+ known vulnerabilities affecting Cisco products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Cisco packages in under 60 seconds. No agents required - completely agentless scanning that works across Cisco deployments.
Free vulnerability database: Access detailed information about every Cisco CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Cisco CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
