Lucene search
K

31 matches found

NVD
NVD
added 2025/12/17 5:15 p.m.7 views

CVE-2025-20393

A vulnerability in the Spam Quarantine feature of Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Email and Web Manager could allow an unauthenticated, remote attacker to execute arbitrary system commands on an affected device with root privileges. This vulnerability is due...

10CVSS0.06476EPSS
Exploits2References2
CISA
CISA
added 2025/12/17 12:0 p.m.9 views

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-20393link is external Cisco Multiple Products Improper Input Validation Vulnerability CVE-2025-40602link is external SonicWall SMA1000 Missing...

10CVSS6.7AI score0.2063EPSS
In wildExploits3References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-31020

Malicious code in bioql PyPI...

6.7CVSS6.4AI score0.00122EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/24 5:53 p.m.1 views

CVE-2025-20314

A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker with level-15 privileges or an unauthenticated attacker with physical access to an affected device to execute persistent code at boot time and break the chain of trust. This vulnerability is due to improper...

6.7CVSS6.2AI score0.00122EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/25 12:0 a.m.2 views

Cisco IOS 安全漏洞

Cisco IOS is a set of operating systems developed by the U.S.-based Cisco for its network devices. A security vulnerability exists in Cisco IOS that stems from incorrect IPv4 ACL handling on the switching virtual interface when the administrator enables and disables the Resilient Ethernet Protoco...

5.8CVSS6.6AI score0.00124EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/09/25 12:0 a.m.2 views

Cisco IOS XE Software 安全漏洞

Cisco IOS XE Software is an operating system from Cisco, Inc. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE Software that stems from...

8.6CVSS6.7AI score0.141EPSS
Exploits0References3
OSV
OSV
added 2024/09/11 5:15 p.m.0 views

CVE-2024-20398

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to obtain read/write file system access on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of user arguments that are passed to specific CLI...

7.8CVSS5.8AI score
Exploits0References1
CNNVD
CNNVD
added 2024/07/10 12:0 a.m.1 views

Cisco IOS XR Security Vulnerability

Cisco IOS XR is a set of operating systems developed by the U.S.-based Cisco for its network devices. A security vulnerability exists in Cisco IOS XR that stems from an error in the software build process and could allow an attacker to take control of the boot configuration, which would allow the...

6.7CVSS6.8AI score0.00009EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/09/13 12:0 a.m.2 views

Cisco IOS XR Security Vulnerability

Cisco IOS and Cisco IOS XR are both operating systems developed by Cisco for its network devices. A security vulnerability exists in Cisco IOS XR, which is caused by a code execution flaw in the image validation checking process. An authenticated attacker could exploit this vulnerability to execu...

7CVSS7.9AI score0.00014EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2023/04/19 9:30 a.m.3 views

U.S. and U.K. Warn of Russian Hackers Exploiting Cisco Router Flaws for Espionage

U.K. and U.S. cybersecurity and intelligence agencies have warned of Russian nation-state actors exploiting now-patched flaws in networking equipment from Cisco to conduct reconnaissance and deploy malware against select targets. The intrusions, per the authorities, took place in 2021 and targete...

9CVSS8.1AI score0.14786EPSS
Exploits1
CNNVD
CNNVD
added 2023/03/23 12:0 a.m.1 views

Cisco IOS XE Software 安全漏洞

Cisco IOS XE Software is an operating system from Cisco, Inc. A single operating system for enterprise wired and wireless access, aggregation, core and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE Software that stems from insufficient...

7.8CVSS7.3AI score0.00038EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2023/03/22 11:0 p.m.1 views

CVE-2023-20035

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with elevated privileges. This vulnerability is due to insufficient input validation by the system CLI. An attacker with privileges to run commands could exploit...

7.8CVSS6.2AI score0.00054EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2022/03/03 12:0 a.m.0 views

VulnCheck KEV: CVE-2018-0174

A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco IOS XE Software could allow for denial-of-service DoS...

8.6CVSS7.2AI score0.05425EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2022/03/03 12:0 a.m.0 views

VulnCheck KEV: CVE-2018-0158

A vulnerability in the implementation of Internet Key Exchange Version 1 IKEv1 functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial-of-service DoS condition...

8.6CVSS7.3AI score0.14558EPSS
Exploits0References1
OSV
OSV
added 2022/02/23 6:15 p.m.0 views

CVE-2022-20624

A vulnerability in the Cisco Fabric Services over IP CFSoIP feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of incoming CFSoIP packets. An attacke...

7.5CVSS5.8AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/10/27 12:0 a.m.2 views

PT-2021-5000 · Cisco · Cisco Ftd

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense FTD Software affected versions not specified Description: The issue is related to the implementation of the Ethernet Industrial Protocol ENIP in the Cisco Firepower Threat Defense FTD Software, which is associat...

7.5CVSS7.3AI score0.00119EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/05/05 12:0 a.m.2 views

Cisco SD-WAN vManage 操作系统命令注入漏洞

Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. Cisco SD-WAN vManage has an operating system command injection vulnerability that can be exploited by a local attacker to inject arbitrary...

7.8CVSS6.3AI score0.00071EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/01/20 12:0 a.m.4 views

多款Cisco产品命令注入漏洞

Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. A command injection vulnerability exists in the CLI utility tcpdump in Cisco SD-WAN Software. The vulnerability stems from the program not...

8.1CVSS7.4AI score0.01283EPSS
Exploits0References5
OSV
OSV
added 2020/09/24 6:15 p.m.1 views

CVE-2020-3403

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to inject a command to the underlying operating system that will execute with root privileges upon the next reboot of the device. The authenticated user must have privileged EXEC permissions on the...

7.8CVSS6.8AI score0.00098EPSS
Exploits0References1
CNVD
CNVD
added 2020/04/16 12:0 a.m.0 views

Cisco Wireless LAN Controller Software Input Validation Error Vulnerability (CNVD-2020-33644)

Cisco Wireless LAN Controller WLC Software is a suite of software for configuring and managing WLCs Wireless LAN Controllers from Cisco. An input validation error vulnerability exists in the Control and Provisioning of Wireless Access Points CAPWAP protocol processor in Cisco WLC Software, which...

8.6CVSS6.8AI score0.01407EPSS
Exploits0References1
Rows per page
Query Builder