Vulnslist

Cisco product, release, and evidence lookup

Known exploited Cisco CVEs

CISA KEV entries with Cisco product and advisory evidence.

Data: Cisco advisories · Cisco CSAF · NVD CVEs · NVD CPEs · CISA KEV · EPSS

CVE Advisory Products KEV added EPSS CVSS Updated
CVE-2026-20182 cisco-sa-sdwan-rpa2-v69WY2SW
Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability
 2 products: Cisco Catalyst SD-WAN Controller, Cisco Catalyst SD-WAN Manager 25.95% EPSS high 10.0
CVE-2026-20122 cisco-sa-sdwan-authbp-qwCX8D4v
Cisco Catalyst SD-WAN Vulnerabilities
 1 product: Cisco Catalyst SD-WAN Manager 1.49% EPSS medium 5.4
CVE-2026-20133 cisco-sa-sdwan-authbp-qwCX8D4v
Cisco Catalyst SD-WAN Vulnerabilities
 1 product: Cisco Catalyst SD-WAN Manager 1.36% EPSS medium 6.5
CVE-2026-20128 cisco-sa-sdwan-authbp-qwCX8D4v
Cisco Catalyst SD-WAN Vulnerabilities
 1 product: Cisco Catalyst SD-WAN Manager 0.08% EPSS low 7.5
CVE-2026-20131 cisco-sa-fmc-rce-NKhnULJh
Cisco Secure Firewall Management Center Software Remote Code Execution Vulnerability
 1 product: Cisco Secure Firewall Management Center (FMC) Appliances 1.72% EPSS medium 10.0
CVE-2026-20127 cisco-sa-sdwan-rpa-EHchtZk
Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability
 1 product: Cisco Catalyst SD-WAN Manager 58.95% EPSS high 10.0
CVE-2022-20775 cisco-sa-sd-wan-priv-E6e8tEdF
Cisco SD-WAN Software Privilege Escalation Vulnerabilities
 5 products: Cisco Catalyst SD-WAN, Cisco Catalyst SD-WAN Manager, Cisco SD-WAN vContainer, + 2 more 0.42% EPSS medium 7.8
CVE-2026-20045 cisco-sa-voice-rce-mORhqY4b
Cisco Unified Communications Products Remote Code Execution Vulnerability
 3 products: Cisco Unified Communications Manager, Cisco Unified Communications Manager IM and Presence Service, Cisco Unity Connection 4.10% EPSS medium 8.2
CVE-2025-20393 cisco-sa-sma-attack-N9bf4
Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager
 2 products: Cisco Secure Email, Cisco Secure Email and Web Manager 5.13% EPSS medium 10.0
CVE-2014-6278 cisco-sa-20140926-bash
GNU Bash Environment Variable Command Injection Vulnerability
 62 products: Cisco ACE 4700 Series Application Control Engine Appliances, Cisco Application and Content Networking System (ACNS) Software, Cisco ASA CX Context-Aware Security Software, + 59 more 91.40% EPSS high 8.8
CVE-2025-20352 cisco-sa-snmp-x4LPhte
Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability
 6 products: Cisco 1000 Series Integrated Services Routers, Cisco 1100 Series Industrial Integrated Services Routers, Cisco 4000 Series Integrated Services Routers, + 3 more 3.43% EPSS medium 7.7
CVE-2025-20362 cisco-sa-asaftd-webvpn-YROOTUW
Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability
 11 products: Cisco 3000 Series Industrial Security Appliances (ISA), Cisco Adaptive Security Virtual Appliance (ASAv), Cisco ASA 5500-X Series Firewalls, + 8 more 50.14% EPSS high 6.5
CVE-2025-20333 cisco-sa-asaftd-webvpn-z5xP8EUB
Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability
 11 products: Cisco 3000 Series Industrial Security Appliances (ISA), Cisco Adaptive Security Virtual Appliance (ASAv), Cisco ASA 5500-X Series Firewalls, + 8 more 30.70% EPSS high 9.9
CVE-2025-20281 cisco-sa-ise-unauth-rce-ZAd2GnJ6
Cisco Identity Services Engine Unauthenticated Remote Code Execution Vulnerabilities
 1 product: Cisco Identity Services Engine Software 36.03% EPSS high 10.0
CVE-2025-20337 cisco-sa-ise-unauth-rce-ZAd2GnJ6
Cisco Identity Services Engine Unauthenticated Remote Code Execution Vulnerabilities
 2 products: Cisco Identity Services Engine Software, Cisco ISE Passive Identity Connector 1.35% EPSS medium 10.0
CVE-2025-32433 cisco-sa-erlang-otp-ssh-xyZZy
Multiple Cisco Products Unauthenticated Remote Code Execution in Erlang/OTP SSH Server: April 2025
 15 products: Cisco ASR 5000 Series Software, Cisco Automated Fault Management, Cisco Cloud Native Broadband Router, + 12 more 47.07% EPSS high 10.0
CVE-2024-20439 cisco-sa-cslu-7gHMzWmw
Cisco Smart Licensing Utility Vulnerabilities
 1 product: Cisco Smart License Utility 87.15% EPSS high 9.8
CVE-2023-20118 cisco-sa-sbr042-multi-vuln-ej76Pke5
Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers Vulnerabilities
 1 product: Cisco Small Business RV Series Router Firmware 3.83% EPSS medium 6.5
CVE-2024-20481 cisco-sa-asaftd-bf-dos-vDZhLqrW
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access VPN Brute Force Denial of Service Vulnerability
 10 products: Cisco 3000 Series Industrial Security Appliances (ISA), Cisco Adaptive Security Virtual Appliance (ASAv), Cisco ASA 5500-X Series Firewalls, + 7 more 11.12% EPSS high 5.8
CVE-2024-20399 cisco-sa-nxos-cmd-injection-xD9OhyOP
Cisco NX-OS Software CLI Command Injection Vulnerability
 6 products: Cisco MDS 9000 Multilayer Directors and Fabric Switches, Cisco Nexus 3000 Series Switches, Cisco Nexus 5000 Series Switches, + 3 more 0.77% EPSS medium 6.0
CVE-2024-20353 cisco-sa-asaftd-websrvs-dos-X8gNucD2
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Web Services Denial of Service Vulnerability
 10 products: Cisco 3000 Series Industrial Security Appliances (ISA), Cisco Adaptive Security Virtual Appliance (ASAv), Cisco ASA 5500-X Series Firewalls, + 7 more 19.54% EPSS high 8.6
CVE-2024-20359 cisco-sa-asaftd-persist-rce-FLsNXF4h
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution Vulnerability
 10 products: Cisco 3000 Series Industrial Security Appliances (ISA), Cisco Adaptive Security Virtual Appliance (ASAv), Cisco ASA 5500-X Series Firewalls, + 7 more 0.16% EPSS low 6.0
CVE-2023-44487 cisco-sa-http2-reset-d8Kf32vZ
HTTP/2 Rapid Reset Attack Affecting Cisco Products: October 2023
 11 products: Cisco Enterprise Chat and Email, Cisco Evolved Programmable Network Manager (EPNM), Cisco NX-OS Software, + 8 more - 7.5
CVE-2023-20269 cisco-sa-asaftd-ravpn-auth-8LyfCkeC
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access VPN Unauthorized Access Vulnerability
 10 products: Cisco 3000 Series Industrial Security Appliances (ISA), Cisco Adaptive Security Virtual Appliance (ASAv), Cisco ASA 5500-X Series Firewalls, + 7 more - 5.0
CVE-2021-45046 cisco-sa-apache-log4j-qRuKNEbd
Vulnerabilities in Apache Log4j Library Affecting Cisco Products: December 2021
 4 products: Cisco Evolved Programmable Network Manager (EPNM), Cisco Network Services Orchestrator, Cisco Unified Communications Manager / Cisco Unity Connection, + 1 more 94.34% EPSS high 9.0
CVE-2020-3153 cisco-sa-ac-win-path-traverse-qO4HWBsj
Cisco AnyConnect Secure Mobility Client for Windows Uncontrolled Search Path Vulnerability
 1 product: Cisco AnyConnect Secure Mobility Client 25.09% EPSS high 6.5
CVE-2020-3433 cisco-sa-anyconnect-dll-F26WwJW
Cisco AnyConnect Secure Mobility Client for Windows DLL Hijacking Vulnerability
 1 product: Cisco AnyConnect Secure Mobility Client 4.46% EPSS medium 7.8
CVE-2019-15271 cisco-sa-20191106-sbrv-cmd-x
Cisco Small Business RV016, RV042, RV042G, and RV082 Routers Arbitrary Command Execution Vulnerability
 1 product: Cisco Small Business RV Series Router Firmware 5.60% EPSS high 8.8
CVE-2016-6366 cisco-sa-20160817-asa-snmp
Cisco Adaptive Security Appliance SNMP Remote Code Execution Vulnerability
 3 products: Cisco ASA 1000V Cloud Firewall Software, Cisco FirePOWER Services Software for ASA, Cisco PIX Firewall 91.21% EPSS high 8.8
CVE-2022-20821 cisco-sa-iosxr-redis-ABJyE5xK
Cisco IOS XR Software Health Check Open Port Vulnerability
 1 product: Cisco IOS XR Software - 6.5
CVE-2014-0160 cisco-sa-20140409-heartbleed
OpenSSL Heartbeat Extension Vulnerability in Multiple Cisco Products
 5 products: Cisco AnyConnect Secure Mobility Client, Cisco Desktop Collaboration Experience DX650 Software, Cisco TelePresence Video Communication Server (VCS), + 2 more 94.46% EPSS high 7.5
CVE-2022-22965 cisco-sa-java-spring-rce-Zx9GUc67
Vulnerability in Spring Framework Affecting Cisco Products: March 2022
 12 products: Cisco Emergency Responder, Cisco Evolved Programmable Network Manager (EPNM), Cisco HyperFlex HX Data Platform, + 9 more - 9.8
CVE-2013-2251 cisco-sa-20131023-struts2
Apache Struts 2 Command Execution Vulnerability in Multiple Cisco Products
 5 products: Cisco Business Edition 3000 Software, Cisco Identity Services Engine Software, Cisco MXE 3500 (Media Experience Engine), + 2 more 94.33% EPSS high 9.8
CVE-2015-0666 cisco-sa-20150401-dcnm
Cisco Prime Data Center Network Manager File Information Disclosure Vulnerability
 1 product: Cisco Prime Data Center Network Manager (DCNM) 59.98% EPSS high 7.5
CVE-2018-0125 cisco-sa-20180207-rv13x
Cisco RV132W and RV134W Remote Code Execution and Denial of Service Vulnerability
 1 product: Cisco Small Business RV Series Router Firmware 29.49% EPSS high 9.8
CVE-2018-0147 cisco-sa-20180307-acs2
Cisco Secure Access Control System Java Deserialization Vulnerability
 1 product: Cisco Secure Access Control System (ACS) 3.95% EPSS medium 9.8
CVE-2016-5195 cisco-sa-20161026-linux
Vulnerability in Linux Kernel Affecting Cisco Products: October 2016
 28 products: Cisco Application Policy Infrastructure Controller (APIC), Cisco ATA 187 Analog Telephone Adaptor, Cisco Digital Content Manager (DCM) Software, + 25 more 94.18% EPSS high 7.0
CVE-2022-20699 cisco-sa-smb-mult-vuln-KA9PK6D
Cisco Small Business RV Series Routers Vulnerabilities
 1 product: Cisco Small Business RV Series Router Firmware 89.40% EPSS high 10.0
CVE-2022-20700 cisco-sa-smb-mult-vuln-KA9PK6D
Cisco Small Business RV Series Routers Vulnerabilities
 1 product: Cisco Small Business RV Series Router Firmware 28.60% EPSS high 10.0
CVE-2017-6627 cisco-sa-20170906-ios-udp
Cisco IOS and Cisco IOS XE Software UDP Packet Processing Denial of Service Vulnerability
 1 product: Cisco IOS 10.18% EPSS high 7.5
CVE-2022-20708 cisco-sa-smb-mult-vuln-KA9PK6D
Cisco Small Business RV Series Routers Vulnerabilities
 1 product: Cisco Small Business RV Series Router Firmware 9.31% EPSS high 10.0
CVE-2022-20701 cisco-sa-smb-mult-vuln-KA9PK6D
Cisco Small Business RV Series Routers Vulnerabilities
 1 product: Cisco Small Business RV Series Router Firmware 6.08% EPSS high 10.0
CVE-2022-20703 cisco-sa-smb-mult-vuln-KA9PK6D
Cisco Small Business RV Series Routers Vulnerabilities
 1 product: Cisco Small Business RV Series Router Firmware 2.00% EPSS medium 10.0
CVE-2018-0167 cisco-sa-20180328-lldp
Cisco IOS, IOS XE, and IOS XR Software Link Layer Discovery Protocol Buffer Overflow Vulnerabilities
 1 product: Cisco IOS XR Software 1.21% EPSS medium 8.8
CVE-2017-6743 cisco-sa-20170629-snmp
SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software
 1 product: Cisco IOS XE Software - 8.8
CVE-2019-1652 cisco-sa-20190123-rv-inject
Cisco Small Business RV320 and RV325 Routers Command Injection Vulnerability
 1 product: Cisco Small Business RV Series Router Firmware - 7.2
CVE-2014-6271 cisco-sa-20140926-bash
GNU Bash Environment Variable Command Injection Vulnerability
 62 products: Cisco ACE 4700 Series Application Control Engine Appliances, Cisco Application and Content Networking System (ACNS) Software, Cisco ASA CX Context-Aware Security Software, + 59 more 94.22% EPSS high 9.8
CVE-2014-7169 cisco-sa-20140926-bash
GNU Bash Environment Variable Command Injection Vulnerability
 62 products: Cisco ACE 4700 Series Application Control Engine Appliances, Cisco Application and Content Networking System (ACNS) Software, Cisco ASA CX Context-Aware Security Software, + 59 more 89.06% EPSS high 9.8
CVE-2021-44228 cisco-sa-apache-log4j-qRuKNEbd
Vulnerabilities in Apache Log4j Library Affecting Cisco Products: December 2021
 2 products: Cisco Unified Communications Manager / Cisco Unity Connection, Cisco Unified Communications Manager IM and Presence Service 94.36% EPSS high 10.0
CVE-2021-40438 cisco-sa-apache-httpd-2.4.49-VWL69sWQ
Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021
 1 product: Cisco Firepower Extensible Operating System (FXOS) 94.43% EPSS high 9.0
CVE-2020-11651 cisco-sa-salt-2vx545AG
SaltStack FrameWork Vulnerabilities Affecting Cisco Products
 3 products: Cisco Modeling Labs, Cisco TelePresence IX5000, Cisco Virtual Internet Routing Lab 94.23% EPSS high 9.8
CVE-2020-11652 cisco-sa-salt-2vx545AG
SaltStack FrameWork Vulnerabilities Affecting Cisco Products
 3 products: Cisco Modeling Labs, Cisco TelePresence IX5000, Cisco Virtual Internet Routing Lab 93.68% EPSS high 6.5
CVE-2020-3161 cisco-sa-voip-phones-rce-dos-rB6EeRXs
Cisco IP Phones Web Server Remote Code Execution and Denial of Service Vulnerability
 6 products: Cisco IP phone, Cisco IP Phone 6800 Series with Multiplatform Firmware, Cisco IP Phone 7800 Series, + 3 more 87.09% EPSS high 9.8
CVE-2020-3569 cisco-sa-iosxr-dvmrp-memexh-dSmpdvfz
Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerabilities
 1 product: Cisco IOS XR Software 4.69% EPSS medium 8.6
CVE-2020-3566 cisco-sa-iosxr-dvmrp-memexh-dSmpdvfz
Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerabilities
 1 product: Cisco IOS XR Software 2.14% EPSS medium 8.6
CVE-2020-3118 cisco-sa-20200205-iosxr-cdp-rce
Cisco IOS XR Software Cisco Discovery Protocol Format String Vulnerability
 1 product: Cisco IOS XR Software 0.20% EPSS low 8.8
CVE-2021-1498 cisco-sa-hyperflex-rce-TjjNrkpR
Cisco HyperFlex HX Command Injection Vulnerabilities
 1 product: Cisco HyperFlex HX Data Platform - 9.8
CVE-2021-1497 cisco-sa-hyperflex-rce-TjjNrkpR
Cisco HyperFlex HX Command Injection Vulnerabilities
 1 product: Cisco HyperFlex HX Data Platform - 9.8
CVE-2017-5638 cisco-sa-20170310-struts2
Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products
 13 products: Cisco Emergency Responder, Cisco Finesse, Cisco Hosted Collaboration Mediation Fulfillment, + 10 more - 9.8
CVE-2019-1653 cisco-sa-20190123-rv-info
Cisco Small Business RV320 and RV325 Routers Information Disclosure Vulnerability
 1 product: Cisco Small Business RV Series Router Firmware - 7.5