← Back

Cisco

cisco

6,588 CVEs • 6,222 products

Products (6,222)

Click to collapse
Toggle
Ios
ios
613 CVEs
Ios Xe
ios_xe
541 CVEs
Adaptive Security Appliance Software
adaptive_security_appliance_software
351 CVEs
Nx Os
nx_os
275 CVEs
Unified Communications Manager
unified_communications_manager
239 CVEs
Firepower Threat Defense
firepower_threat_defense
230 CVEs
Ios Xr
ios_xr
193 CVEs
Secure Firewall Management Center
secure_firewall_management_center
182 CVEs
Identity Services Engine
identity_services_engine
169 CVEs
Webex Meetings Server
webex_meetings_server
136 CVEs
Rv110w Firmware
rv110w_firmware
128 CVEs
Rv130w Firmware
rv130w_firmware
127 CVEs
Unified Computing System
unified_computing_system
105 CVEs
Catalyst Sd Wan Manager
catalyst_sd-wan_manager
91 CVEs
Prime Infrastructure
prime_infrastructure
89 CVEs
Wireless Lan Controller Software
wireless_lan_controller_software
88 CVEs
Application Extension Platform
application_extension_platform
79 CVEs
Rv215w Firmware
rv215w_firmware
71 CVEs
Anyconnect Secure Mobility Client
anyconnect_secure_mobility_client
69 CVEs
Webex Meetings
webex_meetings
69 CVEs
Rv215w Wireless N Vpn Router Firmware
rv215w_wireless-n_vpn_router_firmware
68 CVEs
Data Center Network Manager
data_center_network_manager
68 CVEs
Web Security Appliance
web_security_appliance
65 CVEs
Adaptive Security Appliance
adaptive_security_appliance
63 CVEs
Unity Connection
unity_connection
63 CVEs
Rv130 Vpn Router Firmware
rv130_vpn_router_firmware
62 CVEs
Webex Meetings Online
webex_meetings_online
59 CVEs
Rv130 Firmware
rv130_firmware
59 CVEs
Firepower Extensible Operating System
firepower_extensible_operating_system
56 CVEs
Asyncos
asyncos
54 CVEs
Asa 5500
asa_5500
52 CVEs
Rv320 Firmware
rv320_firmware
52 CVEs
Rv325 Firmware
rv325_firmware
52 CVEs
5500 Series Adaptive Security Appliance
5500_series_adaptive_security_appliance
51 CVEs
Email Security Appliance
email_security_appliance
50 CVEs
Evolved Programmable Network Manager
evolved_programmable_network_manager
50 CVEs
Identity Services Engine Software
identity_services_engine_software
49 CVEs
Unified Contact Center Express
unified_contact_center_express
47 CVEs
Rv042 Firmware
rv042_firmware
46 CVEs
Rv042g Firmware
rv042g_firmware
46 CVEs
Telepresence Video Communication Server
telepresence_video_communication_server
42 CVEs
Sd Wan Vmanage
sd-wan_vmanage
42 CVEs
Unified Communications Domain Manager
unified_communications_domain_manager
41 CVEs
Sd Wan Firmware
sd-wan_firmware
41 CVEs
Unified Communications Manager Im And Presence Service
unified_communications_manager_im_and_presence_service
39 CVEs
Rv082 Dual Wan Vpn Router Firmware
rv082_dual_wan_vpn_router_firmware
37 CVEs
Rv016 Firmware
rv016_firmware
37 CVEs
Rv082 Firmware
rv082_firmware
37 CVEs
Rv042 Dual Wan Vpn Router Firmware
rv042_dual_wan_vpn_router_firmware
36 CVEs
Secure Access Control System
secure_access_control_system
35 CVEs
Firesight System Software
firesight_system_software
35 CVEs
Rv340w Firmware
rv340w_firmware
35 CVEs
Rv340 Firmware
rv340_firmware
35 CVEs
Rv345 Firmware
rv345_firmware
35 CVEs
Rv345p Firmware
rv345p_firmware
35 CVEs
Rv016 Multi Wan Vpn Router Firmware
rv016_multi-wan_vpn_router_firmware
35 CVEs
Rv042g Dual Gigabit Wan Vpn Router Firmware
rv042g_dual_gigabit_wan_vpn_router_firmware
35 CVEs
Rv320 Dual Gigabit Wan Vpn Router Firmware
rv320_dual_gigabit_wan_vpn_router_firmware
35 CVEs
Rv325 Dual Gigabit Wan Vpn Router Firmware
rv325_dual_gigabit_wan_vpn_router_firmware
35 CVEs
Secure Access Control Server
secure_access_control_server
34 CVEs
Jabber
jabber
34 CVEs
Prime Collaboration Provisioning
prime_collaboration_provisioning
34 CVEs
Application Policy Infrastructure Controller
application_policy_infrastructure_controller
34 CVEs
Sf302 08pp Firmware
sf302-08pp_firmware
32 CVEs
Sf302 08mpp Firmware
sf302-08mpp_firmware
32 CVEs
Sg300 10pp Firmware
sg300-10pp_firmware
32 CVEs
Sg300 10mpp Firmware
sg300-10mpp_firmware
32 CVEs
Sf300 24pp Firmware
sf300-24pp_firmware
32 CVEs
Sf300 48pp Firmware
sf300-48pp_firmware
32 CVEs
Sg300 28pp Firmware
sg300-28pp_firmware
32 CVEs
Sf300 08 Firmware
sf300-08_firmware
32 CVEs
Sf300 48p Firmware
sf300-48p_firmware
32 CVEs
Sg300 10mp Firmware
sg300-10mp_firmware
32 CVEs
Sg300 10p Firmware
sg300-10p_firmware
32 CVEs
Sg300 10 Firmware
sg300-10_firmware
32 CVEs
Sg300 28p Firmware
sg300-28p_firmware
32 CVEs
Sf300 24p Firmware
sf300-24p_firmware
32 CVEs
Sg300 28 Firmware
sg300-28_firmware
32 CVEs
Sf300 48 Firmware
sf300-48_firmware
32 CVEs
Sg300 20 Firmware
sg300-20_firmware
32 CVEs
Sg300 52 Firmware
sg300-52_firmware
32 CVEs
Sf300 24 Firmware
sf300-24_firmware
32 CVEs
Sf302 08 Firmware
sf302-08_firmware
32 CVEs
Sf300 24mp Firmware
sf300-24mp_firmware
32 CVEs
Sg300 28mp Firmware
sg300-28mp_firmware
32 CVEs
Sg300 52p Firmware
sg300-52p_firmware
32 CVEs
Sg300 52mp Firmware
sg300-52mp_firmware
32 CVEs
Webex Meeting Center
webex_meeting_center
31 CVEs
Meeting Server
meeting_server
31 CVEs
Sg300 10sfp Firmware
sg300-10sfp_firmware
31 CVEs
Telepresence Collaboration Endpoint
telepresence_collaboration_endpoint
31 CVEs
Firepower Threat Defense Software
firepower_threat_defense_software
31 CVEs
Security Manager
security_manager
30 CVEs
Firewall Services Module
firewall_services_module
29 CVEs
Telepresence Video Communication Server Software
telepresence_video_communication_server_software
29 CVEs
Sg500 28mpp Firmware
sg500-28mpp_firmware
29 CVEs
Sf500 24 Firmware
sf500-24_firmware
29 CVEs
Sf500 24p Firmware
sf500-24p_firmware
29 CVEs
Sf500 48 Firmware
sf500-48_firmware
29 CVEs
Sg500 28 Firmware
sg500-28_firmware
29 CVEs

CVEs (6,588)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2013-5486
1Cisco
1Prime Data Center Network Manager
Apr 29, 2026
Sep 23, 2013
N/A· v4
N/A· v3
10.0 HIGH· v2
Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to write arbitrary files via the chartid parameter, aka...Show more
Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to write arbitrary files via the chartid parameter, aka Bug IDs CSCue77035 and CSCue77036. NOTE: this can be leveraged to execute arbitrary commands by using the JBoss autodeploy functionality.Show less
CVE-2013-3473
1Cisco
1Prime Central For Hosted Collaboration Solution Assurance
Apr 29, 2026
Sep 20, 2013
N/A· v4
N/A· v3
7.8 HIGH· v2
The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance before 9.1.1 does not properly determine the existence of an authenticated session, which allows remote attackers to discover use...Show more
The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance before 9.1.1 does not properly determine the existence of an authenticated session, which allows remote attackers to discover usernames and passwords via an HTTP request, aka Bug ID CSCud32600.Show less
CVE-2012-4082
1Cisco
1Unified Computing System
Apr 29, 2026
Sep 20, 2013
N/A· v4
N/A· v3
6.8 MEDIUM· v2
MCTools in the Cisco Management Controller in Cisco Unified Computing System (UCS) allows local users to gain privileges by entering crafted command-line parameters on a Fabric Interconnect device, aka Bug ID CSCtg20749.
CVE-2012-4081
1Cisco
1Unified Computing System
Apr 29, 2026
Sep 20, 2013
N/A· v4
N/A· v3
4.6 MEDIUM· v2
MCServer in the Cisco Management Controller in Cisco Unified Computing System (UCS) allows local users to cause a denial of service (application crash) via invalid MCTools parameters, aka Bug ID CSCtg20734.
CVE-2013-5501
1Cisco
1Mediasense
Apr 29, 2026
Sep 20, 2013
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in the oraservice page in Cisco MediaSense allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuj23328.
CVE-2013-5500
1Cisco
1Mediasense
Apr 29, 2026
Sep 20, 2013
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in the oraadmin service page in Cisco MediaSense allow remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug IDs CSCuj23320, CSC...Show more
Multiple cross-site scripting (XSS) vulnerabilities in the oraadmin service page in Cisco MediaSense allow remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug IDs CSCuj23320, CSCuj23324, CSCuj23333, and CSCuj23338.Show less
CVE-2013-1130
1Cisco
1Anyconnect Secure Mobility Client
Apr 29, 2026
Sep 20, 2013
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Cisco AnyConnect Secure Mobility Client on Mac OS X uses weak permissions for a library directory, which allows local users to gain privileges via a crafted library file, aka Bug ID CSCue33619.
CVE-2012-4093
1Cisco
1Unified Computing System
Apr 29, 2026
Sep 20, 2013
N/A· v4
N/A· v3
4.6 MEDIUM· v2
The Manager component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service via an invalid Smart Call Home contact address, aka Bug ID CSCtl00186.
CVE-2012-4083
1Cisco
1Unified Computing System
Apr 29, 2026
Sep 20, 2013
N/A· v4
N/A· v3
4.0 MEDIUM· v2
Multiple buffer overflows in the administrative web interface in Cisco Unified Computing System (UCS) allow remote authenticated users to cause a denial of service (memory corruption and session termination) via long str...Show more
Multiple buffer overflows in the administrative web interface in Cisco Unified Computing System (UCS) allow remote authenticated users to cause a denial of service (memory corruption and session termination) via long string values for unspecified parameters, aka Bug ID CSCtg20751.Show less
CVE-2012-4074
1Cisco
1Unified Computing System
Apr 29, 2026
Sep 20, 2013
N/A· v4
N/A· v3
5.8 MEDIUM· v2
The Board Management Controller (BMC) in the Serial over LAN (SoL) subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded private key, which allows man-in-the-middle attackers to obtain sensitive informa...Show more
The Board Management Controller (BMC) in the Serial over LAN (SoL) subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded private key, which allows man-in-the-middle attackers to obtain sensitive information or modify the data stream by leveraging knowledge of this key, aka Bug ID CSCte90338.Show less
CVE-2012-4073
1Cisco
1Unified Computing System
Apr 29, 2026
Sep 20, 2013
N/A· v4
N/A· v3
5.8 MEDIUM· v2
The KVM subsystem in the client in Cisco Unified Computing System (UCS) does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers, and read or modify KVM data, via a c...Show more
The KVM subsystem in the client in Cisco Unified Computing System (UCS) does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers, and read or modify KVM data, via a crafted certificate, aka Bug ID CSCte90332.Show less
CVE-2012-4072
1Cisco
1Unified Computing System
Apr 29, 2026
Sep 20, 2013
N/A· v4
N/A· v3
4.3 MEDIUM· v2
The KVM subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers, and read keyboard and mouse events, by leveraging knowledg...Show more
The KVM subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers, and read keyboard and mouse events, by leveraging knowledge of this certificate's private key, aka Bug ID CSCte90327.Show less
CVE-2013-5497
1Cisco
1Intrusion Prevention System
Apr 29, 2026
Sep 19, 2013
N/A· v4
N/A· v3
4.3 MEDIUM· v2
The authentication manager process in the web framework in Cisco Intrusion Prevention System (IPS) does not properly handle user tokens, which allows remote attackers to cause a denial of service (intermittent MainApp ha...Show more
The authentication manager process in the web framework in Cisco Intrusion Prevention System (IPS) does not properly handle user tokens, which allows remote attackers to cause a denial of service (intermittent MainApp hang) via a crafted management-interface connection request, aka Bug ID CSCuf20148.Show less
CVE-2013-1121
1Cisco
1Nx Os
Apr 29, 2026
Sep 19, 2013
N/A· v4
N/A· v3
5.4 MEDIUM· v2
The regex engine in the BGP implementation in Cisco NX-OS, when a complex regular expression is configured for inbound routes, allows remote attackers to cause a denial of service (device reload) via a crafted AS path se...Show more
The regex engine in the BGP implementation in Cisco NX-OS, when a complex regular expression is configured for inbound routes, allows remote attackers to cause a denial of service (device reload) via a crafted AS path set, aka Bug ID CSCuf49554.Show less
CVE-2013-5496
1Cisco
1Nx Os
Apr 29, 2026
Sep 16, 2013
N/A· v4
N/A· v3
6.3 MEDIUM· v2
Open Network Environment Platform (ONEP) in Cisco NX-OS allows remote authenticated users to cause a denial of service (network-element reload) via a crafted packet, aka Bug ID CSCui51551.
CVE-2013-5495
1Cisco
1Unified Meetingplace
Apr 29, 2026
Sep 16, 2013
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in the web framework in the Application Server in Cisco Unified MeetingPlace allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug I...Show more
Cross-site scripting (XSS) vulnerability in the web framework in the Application Server in Cisco Unified MeetingPlace allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCui44681.Show less
CVE-2013-5494
1Cisco
2Unified Meetingplace
Unified Meetingplace Web Conferencing
Apr 29, 2026
Sep 16, 2013
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified MeetingPlace Solution, as used in Unified MeetingPlace Web Conferencing and Unified MeetingPlace, allows remote attackers to hijack th...Show more
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified MeetingPlace Solution, as used in Unified MeetingPlace Web Conferencing and Unified MeetingPlace, allows remote attackers to hijack the authentication of arbitrary users, aka Bug IDs CSCui45209 and CSCui44674.Show less
CVE-2013-5493
1Cisco
2Virtualization Experience Client 6000
Virtualization Experience Client 6000 Series Firmware
Apr 29, 2026
Sep 13, 2013
N/A· v4
N/A· v3
6.8 MEDIUM· v2
The diagnostic module in the firmware on Cisco Virtualization Experience Client 6000 devices allows local users to bypass intended access restrictions and execute arbitrary commands via unspecified vectors, aka Bug ID CS...Show more
The diagnostic module in the firmware on Cisco Virtualization Experience Client 6000 devices allows local users to bypass intended access restrictions and execute arbitrary commands via unspecified vectors, aka Bug ID CSCug68407.Show less
CVE-2013-5492
1Cisco
1Socialminer
Apr 29, 2026
Sep 13, 2013
N/A· v4
N/A· v3
5.0 MEDIUM· v2
administration.jsp in Cisco SocialMiner allows remote attackers to obtain sensitive information by sniffing the network for HTTP client-server traffic, aka Bug ID CSCuh76780.
CVE-2013-5489
1Cisco
1Socialminer
Apr 29, 2026
Sep 13, 2013
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The gadget implementation in Cisco SocialMiner does not properly restrict the content of GET requests, which allows remote attackers to obtain sensitive information by reading (1) web-server access logs, (2) web-server R...Show more
The gadget implementation in Cisco SocialMiner does not properly restrict the content of GET requests, which allows remote attackers to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer logs, or (3) the browser history, aka Bug ID CSCuh74125.Show less