About the data
Cisco evidence from OpenVuln, CSAF, NVD, CISA KEV, and FIRST EPSS.
Not a device verdict.
Data: Cisco advisories never refreshed · Cisco CSAF never refreshed · NVD CVEs never refreshed · CISA KEV never refreshed · EPSS never refreshed
Warning: Cisco advisories has not refreshed successfully yet.
Warning: Cisco CSAF has not refreshed successfully yet.
Warning: NVD CVEs has not refreshed successfully yet.
Warning: CISA KEV has not refreshed successfully yet.
Warning: EPSS has not refreshed successfully yet.
Limits
Product pages list CSAF rows where Cisco marks a catalog product known_affected, first_affected, or last_affected for a CVE.
Release check queries Cisco OpenVuln Software Checker for an exact OS and version.
Neither checks features, config, licenses, or compensating controls.
Release check does not support IOS XR or interim IOS/IOS XE builds.
In Software Checker, ASA, FMC, FTD, and FXOS advisories start January 2022; NX-OS and NX-OS in ACI mode start July 2019.
Release check needs a platform model for ASA, FTD, FXOS, and NX-OS. IOS, IOS XE, and FMC do not.
Use release check before opening a ticket from a product page. Filter by KEV on a product page for CISA known exploited CVEs.