Cisco - Page 79 of Cisco Most Viewed Vulnerabilities List | Vulners.com

CiscoMost viewed

Recent Most viewed

5223 matches found

Cisco•added 2013/10/07 6:25 p.m.•24 views

Cisco NX-OS Software Routing Information Protocol Denial of Service Vulnerability

A vulnerability in the Routing Information Protocol RIP service engine of Cisco NX-OS Software could allow an unauthenticated, remote attacker to create a denial of service DoS condition by causing the RIP service engine to restart. The vulnerability is due to improper input filtering of RIP...

5CVSS1.9AI score0.02999EPSS

Exploits0References1

Cisco•added 2013/09/24 8:20 p.m.•24 views

Cisco Unified Computing System Fabric Interconnect Devices Arbitrary Command Execution Vulnerability

A vulnerability in the initial setup script of Cisco Unified Computing System fabric interconnect FI devices could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. The vulnerability is due to unfiltered input in the cluster initial...

5.1CVSS3AI score0.01944EPSS

Exploits0References1

Cisco•added 2013/09/19 5:8 p.m.•24 views

Cisco Unified Computing System Cisco Management Controller Command Injection Vulnerability

A vulnerability in the Cisco Management Controller of the Cisco Unified Computing System could allow an authenticated, local attacker to execute commands on the underlying operation system with elevated privileges. The vulnerability is due to improper parameter input validation. An attacker could...

6.8CVSS3.2AI score0.00345EPSS

Exploits0References1

Cisco•added 2013/08/21 4:0 p.m.•24 views

Cisco Unified Communications Manager IM and Presence Service Denial of Service Vulnerability

Cisco Unified Communications Manager IM and Presence Service contains a denial of service DoS vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. Exploitation of this vulnerability could cause an interruption of presence services. Cisco h...

7.8CVSS6.5AI score0.01887EPSS

Exploits0References1

Cisco•added 2013/08/07 4:0 p.m.•24 views

Cisco TelePresence System Default Credentials Vulnerability

A vulnerability in Cisco TelePresence System could allow a remote attacker to access the web server via a user account that is created with default credentials. The vulnerability is due to a default user account being created at installation time. An attacker could exploit this vulnerability by...

10CVSS6.4AI score0.02096EPSS

Exploits0References1

Cisco•added 2013/07/31 4:0 p.m.•24 views

Cisco WAAS Central Manager Remote Code Execution Vulnerability

Cisco Wide Area Application Services WAAS when configured as Central Manager CM, contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the affected system. Cisco has released software updates that address this vulnerability. Workarounds that...

10CVSS7.4AI score0.06002EPSS

Exploits0References1

Cisco•added 2013/07/25 1:23 p.m.•24 views

Cisco ASA Software Cross-Site Scripting Vulnerability

A vulnerability in the WebVPN portal login page of the Cisco ASA could allow an unauthenticated, remote attacker to execute cross-site scripting XSS attacks or hijack user sessions. The vulnerability is due to a failure to properly validate user-supplied input in the WebVPN portal login page. An...

4.3CVSS0.9AI score0.02102EPSS

Exploits0References1

Cisco•added 2013/07/15 3:26 p.m.•24 views

Cisco Secure Access Control System Cross-Site Scripting Vulnerability

A vulnerability in the web interface of Cisco Secure Access Control System ACS could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface of the affected system. The vulnerability is due to insufficient input validation of a...

4.3CVSS1.4AI score0.00931EPSS

Exploits0References1

Cisco•added 2013/07/10 2:15 p.m.•24 views

Cisco Unified Communications Management Products Cross-Site Scripting Vulnerability

A vulnerability in the web framework of Cisco unified communications management products could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface on the affected system. The vulnerability is due to insufficient input validati...

4.3CVSS1.3AI score0.01148EPSS

Exploits0References1

Cisco•added 2013/06/13 4:39 p.m.•24 views

Cisco Video Surveillance Operations Manager Help Page Redirect Vulnerability

A vulnerability in the help page of the Cisco Video Surveillance Operations Manager could allow an unauthenticated, remote attacker to load remote web pages on a victim's web browser. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this...

4.3CVSS2.6AI score0.00958EPSS

Exploits0References1

Cisco•added 2013/04/12 6:27 p.m.•24 views

Cisco Jabber Extensible Communications Platform Connection Manager Vulnerability

A vulnerability in the Connection Manager component of Cisco Jabber Extensible Communications Platform Jabber XCP could allow an unauthenticated, remote attacker to crash the login connection manager service. The vulnerability is due to insufficient checking of received login data. An attacker...

5CVSS1.2AI score0.01232EPSS

Exploits0References1

Cisco•added 2013/04/06 7:38 p.m.•24 views

Cisco Tivoli Business Service Manager Denial of Service Vulnerability

Cisco Tivoli Business Service Manager TBSM, which is part of Cisco Hosted Collaboration Mediation HCM, contains a vulnerability that could allow an unauthenticated, remote attacker to cause a partial denial of service DoS. An attacker could exploit this vulnerability by sending a flood of TCP...

5CVSS2.3AI score0.01232EPSS

Exploits0References1

Cisco•added 2013/01/28 5:1 p.m.•24 views

Cisco Carrier Routing System Small Packets Denial of Service Vulnerability

Cisco Carrier Routing System CRS contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on a targeted system. The vulnerability is due to the improper handling of malformed packets processed by the affected software. An...

5CVSS2.2AI score0.01553EPSS

Exploits0References1

Cisco•added 2013/01/16 4:0 p.m.•24 views

Cisco ASA 1000V Cloud Firewall H.323 Inspection Denial of Service Vulnerability

A vulnerability in Cisco Adaptive Security Appliance ASA Software for the Cisco ASA 1000V Cloud Firewall may cause the Cisco ASA 1000V to reload after processing a malformed H.323 message. Cisco ASA 1000V Cloud Firewall is affected when H.323 inspection is enabled. Cisco has released software...

7.8CVSS6.3AI score0.0133EPSS

Exploits0References1

Cisco•added 2012/09/26 4:0 p.m.•24 views

Cisco IOS Software Tunneled Traffic Queue Wedge Vulnerability

Cisco IOS Software contains a queue wedge vulnerability that can be triggered when processing IP tunneled packets. Only Cisco IOS Software running on the Cisco 10000 Series router has been demonstrated to be affected. Successful exploitation of this vulnerability may prevent traffic from...

7.8CVSS6.5AI score0.02751EPSS

Exploits0References1

Cisco•added 2012/08/10 9:56 p.m.•24 views

Cisco IP Communicator Certificate Trust List Man-in-the-Middle Attack Vulnerability

Cisco IP Communicator contains a vulnerability that could allow an unauthenticated, remote attacker to conduct man-in-the-middle attacks on a targeted system. The vulnerability is due insufficient validation of signing certificates in the Certificate Trust List which have been accepted by end...

6.8CVSS3.1AI score0.00519EPSS

Exploits0References1

Cisco•added 2012/06/20 5:19 p.m.•24 views

Cisco AnyConnect Secure Mobility Client and Secure Desktop WebLaunch Software Downgrade Vulnerability

Cisco AnyConnect Secure Mobility Client and Secure Desktop contain a vulnerability that could allow an unauthenticated, remote attacker to replace software components on a targeted system. The vulnerability exists because the affected software performs insufficient validation of user-supplied...

4.3CVSS6.5AI score0.01401EPSS

Exploits0References1

Cisco•added 2012/06/20 5:16 p.m.•24 views

Cisco AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability

Cisco AnyConnect Secure Mobility Client contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system. The vulnerability is due to insufficient validation of user-supplied input that is received by the 64-bit Java applet that perfor...

6.8CVSS7.2AI score0.02035EPSS

Exploits0References1

Cisco•added 2011/09/28 4:0 p.m.•24 views

Cisco 10000 Series Denial of Service Vulnerability

The Cisco 10000 Series Router is affected by a denial of service DoS vulnerability where an attacker could cause a device reload by sending a series of ICMP packets. Cisco has released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are also availabl...

7.8CVSS6.5AI score0.0177EPSS

Exploits0References1

Cisco•added 2011/05/18 1:28 p.m.•24 views

Cisco Unified Operations Manager Multiple Cross-Site Scripting Vulnerabilities

Cisco Unified Operations Manager contains multiple cross-site scripting vulnerabilities that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to insufficient validation of user-supplied input to certain scripts that make up the...

4.3CVSS6.2AI score0.21464EPSS

Exploits6References1

Cisco•added 2011/04/27 3:10 p.m.•24 views

Cisco Unified Communications Manager Potential SQL Injection Vulnerability

Cisco Unified Communications Manager contains a vulnerability that could allow an unauthenticated, remote attacker to conduct SQL injection on a vulnerable system. The vulnerability is in a JavaServer Pages JSP script due to insufficient checks on user-supplied input. An unauthenticated, remote...

6.4CVSS7.4AI score0.24822EPSS

Exploits1References1

Cisco•added 2010/08/04 4:0 p.m.•24 views

Multiple Vulnerabilities in Cisco Firewall Services Module

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS5.9AI score0.0122EPSS

Exploits0References1

Cisco•added 2010/06/25 6:34 p.m.•24 views

Cisco ASA Software HTTP Response Splitting Vulnerability

Cisco ASA Software versions prior to 8.12 contain a vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability exists due to improper handling of characters within URLs. An unauthenticated, remote attacker could exploit this...

4.3CVSS6.4AI score0.11567EPSS

Exploits2References1

Cisco•added 2009/09/23 4:0 p.m.•24 views

Cisco Unified Communications Manager Express Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.6CVSS6.2AI score0.05548EPSS

Exploits0References1

Cisco•added 2009/09/23 4:0 p.m.•24 views

Cisco IOS Software Object-group Access Control List Bypass Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

4.3CVSS6.2AI score0.02253EPSS

Exploits0References1

Cisco•added 2009/08/19 4:0 p.m.•24 views

Firewall Services Module Crafted ICMP Message Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS6.1AI score0.02853EPSS

Exploits1References1

Cisco•added 2008/09/24 4:0 p.m.•24 views

Cisco IOS IPS Denial of Service Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS6.5AI score0.02678EPSS

Exploits1References1

Cisco•added 2008/05/21 4:0 p.m.•24 views

Cisco Service Control Engine Denial of Service Vulnerabilities

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS6AI score

Exploits0References1

Cisco•added 2007/12/19 4:0 p.m.•24 views

Application Inspection Vulnerability in Cisco Firewall Services Module

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS6.2AI score0.01978EPSS

Exploits1References1

Cisco•added 2007/02/28 12:0 a.m.•24 views

Cisco Catalyst 6000, 6500 and Cisco 7600 Series MPLS Packet Vulnerability

Cisco Catalyst 6500 series systems that are running certain versions of Cisco Internetwork Operating System IOS are vulnerable to an attack from a Multi Protocol Label Switching MPLS packet. Only the systems that are running in Hybrid Mode Catalyst OS CatOS software on the Supervisor Engine and I...

6.1CVSS6.1AI score0.01036EPSS

Exploits0References1

Cisco•added 2006/11/01 4:0 p.m.•24 views

Cisco Security Agent Management Center LDAP Administrator Authentication Bypass

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.5CVSS6.3AI score0.0362EPSS

Exploits0References1

Cisco•added 2006/10/25 4:0 p.m.•24 views

Cisco Security Agent for Linux Port Scan Denial of Service

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS6.3AI score0.03039EPSS

Exploits0References1

Cisco•added 2006/09/20 4:0 p.m.•24 views

Cisco Intrusion Prevention System Management Interface Denial of Service and Fragmented Packet Evasion Vulnerabilities

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

5CVSS6.3AI score0.03485EPSS

Exploits0References1

Cisco•added 2004/04/20 9:0 p.m.•24 views

Vulnerabilities in SNMP Message Processing

...

5CVSS2.6AI score0.02552EPSS

Exploits0References1Affected Software1

Cisco•added 2004/03/04 5:0 p.m.•24 views

Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability

...

Exploits0References1

Cisco•added 2003/07/28 4:0 p.m.•24 views

HTTP GET Vulnerability in AP1x00

...

5CVSS0.1AI score0.09041EPSS

Exploits0References1

Cisco•added 2002/03/27 5:0 p.m.•24 views

LDAP Connection Leak in CTI when User Authentication Fails

...

5CVSS1.7AI score0.01771EPSS

Exploits0References1Affected Software1

Cisco•added 2002/02/27 4:0 p.m.•24 views

Data Leak with Cisco Express Forwarding Enabled

...

5CVSS1.9AI score0.01781EPSS

Exploits0References1

Cisco•added 2001/07/11 3:0 p.m.•24 views

Vulnerabilities in Cisco SN 5420 Storage Routers

...

5CVSS3.2AI score0.03191EPSS

Exploits0References1

Cisco•added 2025/05/07 4:0 p.m.•23 views

Cisco Catalyst SD-WAN Manager Arbitrary File Creation Vulnerability

A vulnerability in the application data endpoints of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to improper validation of requests to APIs. An attacker could...

6.5CVSS6.7AI score0.01246EPSS

Exploits0References1

Cisco•added 2025/05/07 4:0 p.m.•23 views

Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers ARP Denial of Service Vulnerability

A vulnerability in the Cisco Express Forwarding functionality of Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers with Route Switch Processor 3 RSP3C could allow an unauthenticated, adjacent attacker to trigger a denial of service DoS condition. This vulnerability is due to...

7.4CVSS7.6AI score0.00204EPSS

Exploits0References1

Cisco•added 2025/04/16 4:0 p.m.•23 views

Cisco Webex App Client-Side Remote Code Execution Vulnerability

A vulnerability in the custom URL parser of Cisco Webex App could allow an unauthenticated, remote attacker to persuade a user to download arbitrary files, which could allow the attacker to execute arbitrary commands on the host of the targeted user. This vulnerability is due to insufficient inpu...

8.8CVSS8AI score0.00908EPSS

Exploits0References1

Cisco•added 2025/04/02 4:0 p.m.•23 views

Cisco Meraki MX and Z Series AnyConnect VPN Denial of Service Vulnerability

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series devices could allow an authenticated, remote attacker to cause a denial of service DoS condition in the Cisco AnyConnect service on an affected device. To exploit this vulnerability, the attacker must...

7.7CVSS7.2AI score0.00633EPSS

Exploits0References1

Cisco•added 2024/10/23 4:0 p.m.•23 views

Cisco Secure Firewall Management Center Software SQL Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software, formerly Firepower Management Center Software, could allow an authenticated, remote attacker to perform an SQL injection attack against an affected device. To exploit this vulnerability,...

6.5CVSS6.5AI score0.00448EPSS

Exploits0References1

Cisco•added 2024/10/23 4:0 p.m.•23 views

Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Web Client Services Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the VPN web client services feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a browser that is accessing an...

6.1CVSS6.2AI score0.00412EPSS

Exploits0References1

Cisco•added 2024/10/23 4:0 p.m.•23 views

Cisco Secure Firewall Management Center Software Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Secure Firewall Management Center FMC Software, formerly Firepower Management Center Software, could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface of an...

6.1CVSS5.4AI score0.00415EPSS

Exploits0References1

Cisco•added 2024/09/25 4:0 p.m.•23 views

Cisco Catalyst SD-WAN Routers Denial of Service Vulnerability

A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense UTD component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability exists...

8.6CVSS8.5AI score0.00666EPSS

Exploits0References1

Cisco•added 2024/09/25 4:0 p.m.•23 views

Cisco IOS XE Software SD-Access Fabric Edge Node Denial of Service Vulnerability

A vulnerability in the DHCP Snooping feature of Cisco IOS XE Software on Software-Defined Access SD-Access fabric edge nodes could allow an unauthenticated, remote attacker to cause high CPU utilization on an affected device, resulting in a denial of service DoS condition that requires a manual...

8.6CVSS8.5AI score0.00579EPSS

Exploits0References1

Cisco•added 2024/08/07 4:0 p.m.•23 views

Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. For more information about these vulnerabilities, see the Details "detail...

5.4CVSS5.2AI score0.00273EPSS

Exploits0References1

Cisco•added 2024/07/17 4:0 p.m.•23 views

Cisco Webex App Vulnerabilities

Multiple vulnerabilities in Cisco Webex App could allow an unauthenticated attacker to gain access to sensitive credential information. For more information about these vulnerabilities, see the Details "details" section of this advisory. Cisco has released software updates that address these...

6.4CVSS6AI score0.00394EPSS

Exploits0References1

Total number of security vulnerabilities5000