← Back

Cisco

cisco

6,588 CVEs • 6,222 products

Products (6,222)

Click to collapse
Toggle
Ios
ios
613 CVEs
Ios Xe
ios_xe
541 CVEs
Adaptive Security Appliance Software
adaptive_security_appliance_software
351 CVEs
Nx Os
nx_os
275 CVEs
Unified Communications Manager
unified_communications_manager
239 CVEs
Firepower Threat Defense
firepower_threat_defense
230 CVEs
Ios Xr
ios_xr
193 CVEs
Secure Firewall Management Center
secure_firewall_management_center
182 CVEs
Identity Services Engine
identity_services_engine
169 CVEs
Webex Meetings Server
webex_meetings_server
136 CVEs
Rv110w Firmware
rv110w_firmware
128 CVEs
Rv130w Firmware
rv130w_firmware
127 CVEs
Unified Computing System
unified_computing_system
105 CVEs
Catalyst Sd Wan Manager
catalyst_sd-wan_manager
91 CVEs
Prime Infrastructure
prime_infrastructure
89 CVEs
Wireless Lan Controller Software
wireless_lan_controller_software
88 CVEs
Application Extension Platform
application_extension_platform
79 CVEs
Rv215w Firmware
rv215w_firmware
71 CVEs
Anyconnect Secure Mobility Client
anyconnect_secure_mobility_client
69 CVEs
Webex Meetings
webex_meetings
69 CVEs
Rv215w Wireless N Vpn Router Firmware
rv215w_wireless-n_vpn_router_firmware
68 CVEs
Data Center Network Manager
data_center_network_manager
68 CVEs
Web Security Appliance
web_security_appliance
65 CVEs
Adaptive Security Appliance
adaptive_security_appliance
63 CVEs
Unity Connection
unity_connection
63 CVEs
Rv130 Vpn Router Firmware
rv130_vpn_router_firmware
62 CVEs
Webex Meetings Online
webex_meetings_online
59 CVEs
Rv130 Firmware
rv130_firmware
59 CVEs
Firepower Extensible Operating System
firepower_extensible_operating_system
56 CVEs
Asyncos
asyncos
54 CVEs
Asa 5500
asa_5500
52 CVEs
Rv320 Firmware
rv320_firmware
52 CVEs
Rv325 Firmware
rv325_firmware
52 CVEs
5500 Series Adaptive Security Appliance
5500_series_adaptive_security_appliance
51 CVEs
Email Security Appliance
email_security_appliance
50 CVEs
Evolved Programmable Network Manager
evolved_programmable_network_manager
50 CVEs
Identity Services Engine Software
identity_services_engine_software
49 CVEs
Unified Contact Center Express
unified_contact_center_express
47 CVEs
Rv042 Firmware
rv042_firmware
46 CVEs
Rv042g Firmware
rv042g_firmware
46 CVEs
Telepresence Video Communication Server
telepresence_video_communication_server
42 CVEs
Sd Wan Vmanage
sd-wan_vmanage
42 CVEs
Unified Communications Domain Manager
unified_communications_domain_manager
41 CVEs
Sd Wan Firmware
sd-wan_firmware
41 CVEs
Unified Communications Manager Im And Presence Service
unified_communications_manager_im_and_presence_service
39 CVEs
Rv082 Dual Wan Vpn Router Firmware
rv082_dual_wan_vpn_router_firmware
37 CVEs
Rv016 Firmware
rv016_firmware
37 CVEs
Rv082 Firmware
rv082_firmware
37 CVEs
Rv042 Dual Wan Vpn Router Firmware
rv042_dual_wan_vpn_router_firmware
36 CVEs
Secure Access Control System
secure_access_control_system
35 CVEs
Firesight System Software
firesight_system_software
35 CVEs
Rv340w Firmware
rv340w_firmware
35 CVEs
Rv340 Firmware
rv340_firmware
35 CVEs
Rv345 Firmware
rv345_firmware
35 CVEs
Rv345p Firmware
rv345p_firmware
35 CVEs
Rv016 Multi Wan Vpn Router Firmware
rv016_multi-wan_vpn_router_firmware
35 CVEs
Rv042g Dual Gigabit Wan Vpn Router Firmware
rv042g_dual_gigabit_wan_vpn_router_firmware
35 CVEs
Rv320 Dual Gigabit Wan Vpn Router Firmware
rv320_dual_gigabit_wan_vpn_router_firmware
35 CVEs
Rv325 Dual Gigabit Wan Vpn Router Firmware
rv325_dual_gigabit_wan_vpn_router_firmware
35 CVEs
Secure Access Control Server
secure_access_control_server
34 CVEs
Jabber
jabber
34 CVEs
Prime Collaboration Provisioning
prime_collaboration_provisioning
34 CVEs
Application Policy Infrastructure Controller
application_policy_infrastructure_controller
34 CVEs
Sf302 08pp Firmware
sf302-08pp_firmware
32 CVEs
Sf302 08mpp Firmware
sf302-08mpp_firmware
32 CVEs
Sg300 10pp Firmware
sg300-10pp_firmware
32 CVEs
Sg300 10mpp Firmware
sg300-10mpp_firmware
32 CVEs
Sf300 24pp Firmware
sf300-24pp_firmware
32 CVEs
Sf300 48pp Firmware
sf300-48pp_firmware
32 CVEs
Sg300 28pp Firmware
sg300-28pp_firmware
32 CVEs
Sf300 08 Firmware
sf300-08_firmware
32 CVEs
Sf300 48p Firmware
sf300-48p_firmware
32 CVEs
Sg300 10mp Firmware
sg300-10mp_firmware
32 CVEs
Sg300 10p Firmware
sg300-10p_firmware
32 CVEs
Sg300 10 Firmware
sg300-10_firmware
32 CVEs
Sg300 28p Firmware
sg300-28p_firmware
32 CVEs
Sf300 24p Firmware
sf300-24p_firmware
32 CVEs
Sg300 28 Firmware
sg300-28_firmware
32 CVEs
Sf300 48 Firmware
sf300-48_firmware
32 CVEs
Sg300 20 Firmware
sg300-20_firmware
32 CVEs
Sg300 52 Firmware
sg300-52_firmware
32 CVEs
Sf300 24 Firmware
sf300-24_firmware
32 CVEs
Sf302 08 Firmware
sf302-08_firmware
32 CVEs
Sf300 24mp Firmware
sf300-24mp_firmware
32 CVEs
Sg300 28mp Firmware
sg300-28mp_firmware
32 CVEs
Sg300 52p Firmware
sg300-52p_firmware
32 CVEs
Sg300 52mp Firmware
sg300-52mp_firmware
32 CVEs
Webex Meeting Center
webex_meeting_center
31 CVEs
Meeting Server
meeting_server
31 CVEs
Sg300 10sfp Firmware
sg300-10sfp_firmware
31 CVEs
Telepresence Collaboration Endpoint
telepresence_collaboration_endpoint
31 CVEs
Firepower Threat Defense Software
firepower_threat_defense_software
31 CVEs
Security Manager
security_manager
30 CVEs
Firewall Services Module
firewall_services_module
29 CVEs
Telepresence Video Communication Server Software
telepresence_video_communication_server_software
29 CVEs
Sg500 28mpp Firmware
sg500-28mpp_firmware
29 CVEs
Sf500 24 Firmware
sf500-24_firmware
29 CVEs
Sf500 24p Firmware
sf500-24p_firmware
29 CVEs
Sf500 48 Firmware
sf500-48_firmware
29 CVEs
Sg500 28 Firmware
sg500-28_firmware
29 CVEs

CVEs (6,588)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2004-0054
1Cisco
1Ios
Apr 16, 2026
Feb 17, 2004
N/A· v4
N/A· v3
7.5 HIGH· v2
Multiple vulnerabilities in the H.323 protocol implementation for Cisco IOS 11.3T through 12.2T allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG...Show more
Multiple vulnerabilities in the H.323 protocol implementation for Cisco IOS 11.3T through 12.2T allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.Show less
CVE-2004-0044
1Cisco
1Personal Assistant
Apr 16, 2026
Feb 3, 2004
N/A· v4
N/A· v3
7.5 HIGH· v2
Cisco Personal Assistant 1.4(1) and 1.4(2) disables password authentication when "Allow Only Cisco CallManager Users" is enabled and the Corporate Directory settings refer to the directory service being used by Cisco Cal...Show more
Cisco Personal Assistant 1.4(1) and 1.4(2) disables password authentication when "Allow Only Cisco CallManager Users" is enabled and the Corporate Directory settings refer to the directory service being used by Cisco CallManager, which allows remote attackers to gain access with a valid username.Show less
CVE-2004-1760
2Cisco
Ibm
17Call Manager
Conference ConnectionDirector Agent+14 more
Apr 16, 2026
Jan 21, 2004
N/A· v4
N/A· v3
10.0 HIGH· v2
The default installation of Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, does not require authentication, which allows remote attackers to gain administrator privileges by...Show more
The default installation of Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, does not require authentication, which allows remote attackers to gain administrator privileges by connecting to TCP port 14247.Show less
CVE-2004-1759
2Cisco
Ibm
17Call Manager
Conference ConnectionDirector Agent+14 more
Apr 16, 2026
Jan 21, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, allows remote attackers to cause a denial of service (CPU consumption) via arbitrary packets to TCP port 14247, as demonstrated...Show more
Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, allows remote attackers to cause a denial of service (CPU consumption) via arbitrary packets to TCP port 14247, as demonstrated using port scanning.Show less
CVE-2003-1004
1Cisco
2Pix Firewall
Pix Firewall Software
Apr 16, 2026
Jan 5, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Cisco PIX firewall 6.2.x through 6.2.3, when configured as a VPN Client, allows remote attackers to cause a denial of service (dropped IPSec tunnel connection) via an IKE Phase I negotiation request to the outside interf...Show more
Cisco PIX firewall 6.2.x through 6.2.3, when configured as a VPN Client, allows remote attackers to cause a denial of service (dropped IPSec tunnel connection) via an IKE Phase I negotiation request to the outside interface of the firewall.Show less
CVE-2003-1003
1Cisco
2Pix Firewall
Pix Firewall Software
Apr 16, 2026
Jan 5, 2004
N/A· v4
N/A· v3
7.8 HIGH· v2
Cisco PIX firewall 5.x.x, and 6.3.1 and earlier, allows remote attackers to cause a denial of service (crash and reload) via an SNMPv3 message when snmp-server is set.
CVE-2003-1002
1Cisco
9Catalyst 6500
Catalyst 6500 Ws Svc Nam 1Catalyst 6500 Ws Svc Nam 2+6 more
Apr 16, 2026
Jan 5, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Cisco Firewall Services Module (FWSM) in Cisco Catalyst 6500 and 7600 series devices allows remote attackers to cause a denial of service (crash and reload) via an SNMPv3 message when snmp-server is set.
CVE-2003-1001
1Cisco
9Catalyst 6500
Catalyst 6500 Ws Svc Nam 1Catalyst 6500 Ws Svc Nam 2+6 more
Apr 16, 2026
Jan 5, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Buffer overflow in the Cisco Firewall Services Module (FWSM) in Cisco Catalyst 6500 and 7600 series devices allows remote attackers to cause a denial of service (crash and reload) via HTTP auth requests for (1) TACACS+ o...Show more
Buffer overflow in the Cisco Firewall Services Module (FWSM) in Cisco Catalyst 6500 and 7600 series devices allows remote attackers to cause a denial of service (crash and reload) via HTTP auth requests for (1) TACACS+ or (2) RADIUS authentication.Show less
CVE-2003-0983
1Cisco
280 7111 01 For The Unity Svrx255 1a
80 7112 01 For The Unity Svrx255 2a
Apr 16, 2026
Jan 5, 2004
N/A· v4
N/A· v3
7.5 HIGH· v2
Cisco Unity on IBM servers is shipped with default settings that should have been disabled by the manufacturer, which allows local or remote attackers to conduct unauthorized activities via (1) a "bubba" local user accou...Show more
Cisco Unity on IBM servers is shipped with default settings that should have been disabled by the manufacturer, which allows local or remote attackers to conduct unauthorized activities via (1) a "bubba" local user account, (2) an open TCP port 34571, or (3) when a local DHCP server is unavailable, a DHCP server on the manufacturer's test network.Show less
CVE-2003-0982
1Cisco
9Application And Content Networking Software
Content Distribution Manager 4630Content Distribution Manager 4650+6 more
Apr 16, 2026
Jan 5, 2004
N/A· v4
N/A· v3
7.5 HIGH· v2
Buffer overflow in the authentication module for Cisco ACNS 4.x before 4.2.11, and 5.x before 5.0.5, allows remote attackers to execute arbitrary code via a long password.
CVE-2003-1398
1Cisco
1Ios
Apr 16, 2026
Dec 31, 2003
N/A· v4
N/A· v3
9.3 HIGH· v2
Cisco IOS 12.0 through 12.2, when IP routing is disabled, accepts false ICMP redirect messages, which allows remote attackers to cause a denial of service (network routing modification).
CVE-2003-1132
1Cisco
2Content Services Switch 11000
Content Services Switch 11500
Apr 16, 2026
Dec 31, 2003
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The DNS server for Cisco Content Service Switch (CSS) 11000 and 11500, when prompted for a nonexistent AAAA record, responds with response code 3 (NXDOMAIN or "Name Error") instead of response code 0 ("No Error"), which...Show more
The DNS server for Cisco Content Service Switch (CSS) 11000 and 11500, when prompted for a nonexistent AAAA record, responds with response code 3 (NXDOMAIN or "Name Error") instead of response code 0 ("No Error"), which allows remote attackers to cause a denial of service (inaccessible domain) by forcing other DNS servers to send and cache a request for a AAAA record to the vulnerable server.Show less
CVE-2003-1109
1Cisco
4Ios
Ip Phone 7940Ip Phone 7960+1 more
Apr 16, 2026
Dec 31, 2003
N/A· v4
N/A· v3
7.5 HIGH· v2
The Session Initiation Protocol (SIP) implementation in multiple Cisco products including IP Phone models 7940 and 7960, IOS versions in the 12.2 train, and Secure PIX 5.2.9 to 6.2.2 allows remote attackers to cause a de...Show more
The Session Initiation Protocol (SIP) implementation in multiple Cisco products including IP Phone models 7940 and 7960, IOS versions in the 12.2 train, and Secure PIX 5.2.9 to 6.2.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.Show less
CVE-2003-1096
1Cisco
1Leap
Apr 16, 2026
Dec 31, 2003
N/A· v4
N/A· v3
10.0 HIGH· v2
The Cisco LEAP challenge/response authentication mechanism uses passwords in a way that is susceptible to dictionary attacks, which makes it easier for remote attackers to gain privileges via brute force password guessin...Show more
The Cisco LEAP challenge/response authentication mechanism uses passwords in a way that is susceptible to dictionary attacks, which makes it easier for remote attackers to gain privileges via brute force password guessing attacks.Show less
CVE-2003-0851
2Cisco
Openssl
5Css11000 Content Services Switch
IosOpenssl+2 more
Apr 16, 2026
Dec 1, 2003
N/A· v4
N/A· v3
5.0 MEDIUM· v2
OpenSSL 0.9.6k allows remote attackers to cause a denial of service (crash via large recursion) via malformed ASN.1 sequences.
CVE-2003-0732
1Cisco
4Ciscoworks Cd1
Ciscoworks Common Management FoundationResource Manager+1 more
Apr 16, 2026
Oct 20, 2003
N/A· v4
N/A· v3
10.0 HIGH· v2
CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to obtain restricted information and possibly gain administrative privileges by changing the "guest" user to the Admin user on the Modif...Show more
CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to obtain restricted information and possibly gain administrative privileges by changing the "guest" user to the Admin user on the Modify or delete users pages.Show less
CVE-2003-0731
1Cisco
4Ciscoworks Cd1
Ciscoworks Common Management FoundationResource Manager+1 more
Apr 16, 2026
Oct 20, 2003
N/A· v4
N/A· v3
10.0 HIGH· v2
CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" par...Show more
CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" parameter with a modifyUser value and a modified "priviledges" parameter.Show less
CVE-2003-0677
1Cisco
1Webns
Apr 16, 2026
Aug 27, 2003
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Cisco CSS 11000 routers on the CS800 chassis allow remote attackers to cause a denial of service (CPU consumption or reboot) via a large number of TCP SYN packets to the circuit IP address, aka "ONDM Ping failure."
CVE-2003-0647
1Cisco
1Ios
Apr 16, 2026
Aug 27, 2003
N/A· v4
N/A· v3
7.5 HIGH· v2
Buffer overflow in the HTTP server for Cisco IOS 12.2 and earlier allows remote attackers to execute arbitrary code via an extremely long (2GB) HTTP GET request.
CVE-2003-0512
1Cisco
1Ios
Apr 16, 2026
Aug 27, 2003
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Cisco IOS 12.2 and earlier generates a "% Login invalid" message instead of prompting for a password when an invalid username is provided, which allows remote attackers to identify valid usernames on the system and condu...Show more
Cisco IOS 12.2 and earlier generates a "% Login invalid" message instead of prompting for a password when an invalid username is provided, which allows remote attackers to identify valid usernames on the system and conduct brute force password guessing, as reported for the Aironet Bridge.Show less