Cisco - Page 94 of Cisco Most Viewed Vulnerabilities List | Vulners.com

CiscoMost viewed

Recent Most viewed

5224 matches found

Cisco•added 2009/12/16 4:0 p.m.•19 views

Multiple Cisco WebEx WRF Player Vulnerabilities

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

9.3CVSS5.9AI score0.05171EPSS

Exploits1References1

Cisco•added 2009/09/23 4:0 p.m.•19 views

Cisco IOS Software Zone-Based Policy Firewall Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS6.2AI score0.02525EPSS

Exploits0References1

Cisco•added 2009/06/24 4:0 p.m.•19 views

Cisco Physical Access Gateway Denial of Service Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS6.2AI score0.01619EPSS

Exploits0References1

Cisco•added 2008/04/16 4:0 p.m.•19 views

Cisco Network Admission Control Shared Secret Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

10CVSS6.2AI score0.02566EPSS

Exploits0References1

Cisco•added 2007/02/28 4:0 p.m.•19 views

Cisco Catalyst 6000, 6500 Series and Cisco 7600 Series NAM (Network Analysis Module) Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

10CVSS6.2AI score0.06812EPSS

Exploits0References1

Cisco•added 2007/02/14 11:2 p.m.•19 views

Cisco Firewall Services Module, PIX and ASA SIP Message Denial of Service Vulnerability

Cisco Firewall Services Module, PIX Security Appliance, and ASA Security Appliance contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability exists due to an error when handling SIP messages. An unauthenticated, remo...

7.8CVSS6.8AI score0.03236EPSS

Exploits0References1

Cisco•added 2006/08/23 4:0 p.m.•19 views

Unintentional Password Modification Vulnerability in Cisco Firewall Products

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

Exploits0References1

Cisco•added 2006/05/10 4:0 p.m.•19 views

AVS TCP Relay Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

6.4CVSS6.3AI score0.0154EPSS

Exploits0References1

Cisco•added 2005/05/11 4:0 p.m.•19 views

FWSM URL Filtering Solution TCP ACL Bypass Vulnerability

...

7.5CVSS2.3AI score0.01202EPSS

Exploits0References1Affected Software1

Cisco•added 2004/01/21 5:0 p.m.•19 views

Voice Product Vulnerabilities on IBM Servers

...

Exploits0References1

Cisco•added 2002/07/02 6:0 p.m.•19 views

Cisco Secure ACS Unix Acme.server Information Disclosure Vulnerability

...

5CVSS1.8AI score0.09215EPSS

Exploits0References1Affected Software1

Cisco•added 2000/12/13 6:0 p.m.•19 views

Cisco Catalyst SSH Protocol Mismatch Vulnerability

...

Exploits0References1

Cisco•added 2000/03/16 4:0 p.m.•19 views

Cisco Secure PIX Firewall FTP Vulnerabilities

...

Exploits0References1

Cisco•added 1998/09/02 5:0 p.m.•19 views

Cisco PIX Firewall Manager File Exposure

...

Exploits0References1

Cisco•added 2026/05/06 4:0 p.m.•18 views

Cisco Unity Connection Remote Code Execution and Server-Side Request Forgery Vulnerabilities

Multiple vulnerabilities in Cisco Unity Connection could allow a remote attacker to execute arbitrary code on or conduct server-side request forgery SSRF attacks through an affected device. For more information about these vulnerabilities, see the Details "details" section of this advisory. Cisco...

8.8CVSS6.2AI score0.00696EPSS

Exploits0References1

Cisco•added 2026/04/15 4:0 p.m.•18 views

Cisco Unity Connection Cross-Site Scripting, Open Redirect, and SQL Injection Vulnerabilities

Multiple vulnerabilities in Cisco Unity Connection could allow a remote attacker to conduct a cross-site scripting XSS attack, an open redirect attack, and an SQL injection attack. For more information about these vulnerabilities, see the Details "details" section of this advisory. Cisco has...

6.1CVSS5.8AI score0.00228EPSS

Exploits0References1

Cisco•added 2025/05/07 4:0 p.m.•18 views

Cisco IOS XE Wireless Controller Software Cisco Discovery Protocol Denial of Service Vulnerability

A vulnerability in Cisco IOS XE Wireless Controller Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient input validation of access point AP Cisco Discovery Protocol CDP neighbor...

7.4CVSS7.5AI score0.0019EPSS

Exploits0References1

Cisco•added 2025/05/07 4:0 p.m.•18 views

Multiple Cisco Products Switch Integrated Security Features DHCPv6 Denial of Service Vulnerability

A vulnerability in the Switch Integrated Security Features SISF of Cisco IOS Software, Cisco IOS XE Software, Cisco NX-OS Software, and Cisco Wireless LAN Controller WLC AireOS Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected...

7.4CVSS7.5AI score0.00199EPSS

Exploits0References1

Cisco•added 2025/03/12 4:0 p.m.•18 views

Cisco IOS XR Software Border Gateway Protocol Confederation Denial of Service Vulnerability

A vulnerability in confederation implementation for the Border Gateway Protocol BGP in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. This vulnerability is due to a memory corruption that occurs when a BGP update is created with a...

8.6CVSS8.7AI score0.00922EPSS

Exploits0References1

Cisco•added 2024/12/04 4:0 p.m.•18 views

Cisco NX-OS Software Image Verification Bypass Vulnerability

A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification. This vulnerability is due to insecure...

5.2CVSS5.4AI score0.00299EPSS

Exploits0References1

Cisco•added 2024/11/06 4:0 p.m.•18 views

Cisco 6800, 7800, 8800, and 9800 Series Phones with Multiplatform Firmware Stored Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web UI of Cisco Desk Phone 9800 Series, Cisco IP Phone 6800, 7800, and 8800 Series, and Cisco Video Phone 8875 with Cisco Multiplatform Firmware could allow an authenticated, remote attacker to conduct stored cross-site scripting XSS attacks against users. These...

4.8CVSS5.2AI score

Exploits0References1

Cisco•added 2024/11/06 4:0 p.m.•18 views

Cisco Enterprise Chat and Email Denial of Service Vulnerability

A vulnerability in the External Agent Assignment Service EAAS feature of Cisco Enterprise Chat and Email ECE could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of Media Routing...

7.5CVSS7.6AI score0.00639EPSS

Exploits0References1

Cisco•added 2024/10/23 4:0 p.m.•18 views

Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution Vulnerability

A vulnerability in the VPN web server of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to execute arbitrary code with root-level privileges. Administrator-level privileges are required to exploit this...

6CVSS6.5AI score0.00198EPSS

Exploits0References1

Cisco•added 2024/10/02 4:0 p.m.•18 views

Cisco Meraki MX and Z Series Teleworker Gateway AnyConnect VPN Session Takeover and Denial of Service Vulnerability

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to hijack an AnyConnect VPN session or cause a denial of service DoS condition for individual users of the AnyConnect VPN...

5.8CVSS6AI score0.0037EPSS

Exploits0References1

Cisco•added 2024/09/11 4:0 p.m.•18 views

Cisco IOS XR Software Dedicated XML Agent TCP Denial of Service Vulnerability

A vulnerability in the Dedicated XML Agent feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service DoS on XML TCP listen port 38751. This vulnerability is due to a lack of proper error validation of ingress XML packets. An attacker could explo...

5.3CVSS5.4AI score0.00437EPSS

Exploits0References1

Cisco•added 2024/08/21 4:0 p.m.•18 views

Cisco Unified Communications Manager Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user o...

6.1CVSS6AI score0.00349EPSS

Exploits0References1

Cisco•added 2024/07/17 4:0 p.m.•18 views

Cisco Secure Web Appliance Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated, local attacker to execute arbitrary commands and elevate privileges to root. This vulnerability is due to insufficient validation of user-supplied input for the CLI. An attacker could exploit this...

8.8CVSS8.9AI score0.00164EPSS

Exploits0References1

Cisco•added 2020/11/04 4:0 p.m.•18 views

Cisco Webex Teams Web Interface Cross-Site Scripting Vulnerability

A vulnerability in the web-based interface of Cisco Webex Teams could allow an authenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper validation of usernames. An attacker could exploit this vulnerability by creating an account that contains...

5.4CVSS0.5AI score0.00771EPSS

Exploits0References1

Cisco•added 2020/07/01 4:0 p.m.•18 views

Cisco Digital Network Architecture Center Information Disclosure Vulnerability

A vulnerability in Cisco Digital Network Architecture DNA Center could allow an authenticated, remote attacker to view sensitive information in clear text. The vulnerability is due to insecure storage of certain unencrypted credentials on an affected device. An attacker could exploit this...

6.5CVSS6.3AI score0.01307EPSS

Exploits0References1

Cisco•added 2020/06/03 4:0 p.m.•18 views

Cisco Digital Network Architecture Center Information Disclosure Vulnerability

A vulnerability in the audit logging component of Cisco Digital Network Architecture DNA Center could allow an authenticated, remote attacker to view sensitive information in clear text. The vulnerability is due to the storage of certain unencrypted credentials. An attacker could exploit this...

4.3CVSS1AI score0.01047EPSS

Exploits0References1

Cisco•added 2020/05/06 4:0 p.m.•18 views

Cisco Umbrella Carriage Return Line Feed Injection Vulnerability

A vulnerability in the web server of Cisco Umbrella could allow an unauthenticated, remote attacker to perform a carriage return line feed CRLF injection attack against a user of an affected service. The vulnerability is due to insufficient validation of user input. An attacker could exploit this...

4.7CVSS2.1AI score0.009EPSS

Exploits0References1

Cisco•added 2020/05/06 4:0 p.m.•18 views

Cisco Firepower Threat Defense Software Information Disclosure Vulnerability

A vulnerability in the application policy configuration of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data on an affected device. The vulnerability is due to insufficient application identification. An...

5.8CVSS6.5AI score0.01061EPSS

Exploits0References1

Cisco•added 2020/03/18 4:0 p.m.•18 views

Cisco SD-WAN Solution Privilege Escalation Vulnerability

A vulnerability in Cisco SD-WAN Solution software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a crafted request to ...

7CVSS7AI score0.00383EPSS

Exploits0References1

Cisco•added 2020/03/04 4:0 p.m.•18 views

Cisco Prime Collaboration Provisioning Information Disclosure Vulnerability

A vulnerability in the web-based management interface of Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to obtain sensitive information about an affected device. The vulnerability exists because replies from the web-based management interface include...

5.3CVSS1.3AI score0.01106EPSS

Exploits0References1

Cisco•added 2020/01/22 4:0 p.m.•18 views

Cisco Email Security Appliance Content Filter Bypass Vulnerability

A vulnerability in the email message scanning of Cisco AsyncOS Software for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to bypass configured filters on the device. The vulnerability is due to improper validation of incoming emails. An attacker could exploit...

5.8CVSS1.7AI score0.01378EPSS

Exploits0References1

Cisco•added 2017/06/07 4:0 p.m.•18 views

Cisco Elastic Services Controller Authentication Request Processing Arbitrary Command Execution Vulnerability

A vulnerability in the esclistener.py script of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to execute arbitrary commands as the tomcat user on an affected system. The vulnerability is due to insufficient sanitization of arguments that are passed while...

5.3CVSS8.9AI score0.05856EPSS

Exploits0References1

Cisco•added 2017/06/07 4:0 p.m.•18 views

Cisco Ultra Services Platform Plaintext Credential Logging Information Disclosure Vulnerability

A vulnerability in the Virtual Network Function Manager's VNFM logging function of Cisco Ultra Services Platform could allow an authenticated, local attacker to view sensitive data on an affected system. The vulnerability is due to insufficient protection of sensitive data. An attacker could...

4.7CVSS5.3AI score0.00275EPSS

Exploits0References1

Cisco•added 2017/04/19 4:0 p.m.•18 views

Cisco Prime Network Registrar DNS Denial of Service Vulnerability

A vulnerability in the DNS input packet processor for Cisco Prime Network Registrar could allow an unauthenticated, remote attacker to cause the DNS process to momentarily restart, which could lead to a partial denial of service DoS condition on the affected system. The vulnerability is due to...

5.8CVSS5.7AI score0.01986EPSS

Exploits0References1

Cisco•added 2017/04/05 4:0 p.m.•18 views

Cisco UCS Director Virtual Machine Information Disclosure Vulnerability

A vulnerability in the role-based resource checking functionality of Cisco Unified Computing System UCS Director could allow an authenticated, remote attacker to view unauthorized information for any virtual machine in a UCS domain. The vulnerability is due to improper role-based user checks. An...

6.4CVSS4.7AI score0.01454EPSS

Exploits0References1

Cisco•added 2017/02/15 4:0 p.m.•18 views

Cisco Secure Access Control System XML External Entity Vulnerability

A vulnerability in the web-based user interface of the Cisco Secure Access Control System ACS could allow an authenticated, remote attacker to have read access to part of the information stored in the affected system. The vulnerability is due to improper handling of the XML External Entity XXE wh...

4.3CVSS4.2AI score0.0155EPSS

Exploits0References1

Cisco•added 2017/02/01 4:0 p.m.•18 views

Cisco Industrial Ethernet 2000 Series Switches CIP Denial of Service Vulnerability

A vulnerability in the implementation of Common Industrial Protocol CIP functionality in Cisco Industrial Ethernet 2000 Series Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition due to a system memory leak. The vulnerability is due to improper...

6.8CVSS6.7AI score0.02806EPSS

Exploits0References1

Cisco•added 2016/09/21 4:0 p.m.•18 views

Cisco Prime Home Web-Based User Interface XML External Entity Vulnerability

A vulnerability in the web-based user interface of Cisco Prime Home could allow an unauthenticated, remote attacker to have read access to part of the information stored in the affected system. The vulnerability is due to improper handling of an XML External Entity XXE when parsing an XML file. A...

4.3CVSS7.3AI score0.01379EPSS

Exploits0References1

Cisco•added 2016/08/17 4:0 p.m.•18 views

Cisco Aironet 1800, 2800, and 3800 Series Access Point Platforms AMPDU Denial of Service Vulnerability

A vulnerability in the Aggregated MAC Protocol Data Unit AMPDU implementation in Cisco Access Point AP platforms could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The vulnerability is due to incomplete input validation of the AMPDU packet header. An...

6.1CVSS6.5AI score0.0112EPSS

Exploits0References1

Cisco•added 2016/08/10 4:0 p.m.•18 views

Cisco IP Phone 8800 Series Cross-Site Scripting Vulnerability

A vulnerability in the web application of the Cisco IP Phone 8800 Series could allow an authenticated, remote attacker to perform a stored, cross-site scripting XSS attack. The vulnerability is due to insufficient sanitization of parameter values. An attacker could exploit this vulnerability by...

4CVSS5.5AI score0.00802EPSS

Exploits0References1

Cisco•added 2015/07/10 3:40 p.m.•18 views

Cisco AsyncOS for Cisco Email Security Appliance and Cisco Web Security Appliance Cluster Denial of Service Vulnerability

A vulnerability in the clustering component of Cisco AsyncOS for Cisco Email Security Appliance ESA and Cisco Web Security Appliance WSA could allow an unauthenticated, remote attacker to cause the device to become unresponsive on the clustering and SSH configured ports. The vulnerability is due ...

5CVSS6.4AI score0.02394EPSS

Exploits0References1

Cisco•added 2015/06/11 4:0 p.m.•18 views

Cisco IOS XR Software Crafted IPv6 Packet Denial of Service Vulnerability

A vulnerability in the IP version 6 IPv6 processing code of Cisco IOS XR Software for Cisco CRS-3 Carrier Routing System could allow an unauthenticated, remote attacker to trigger an ASIC scan of the Network Processor Unit NPU and a reload of the line card processing an IPv6 packet. The...

5CVSS6.3AI score0.02194EPSS

Exploits0References1

Cisco•added 2015/05/27 6:55 p.m.•18 views

Cisco Wireless LAN Controller TCP Denial of Service Vulnerability

A vulnerability in the Cisco Wireless LAN Controller WLC could allow an unauthenticated, adjacent attacker to cause a Denial of Service DoS condition on the affected device. The vulnerability is due to improper input validation. An attacker could exploit this vulnerability by sending crafted TCP...

6.1CVSS6.6AI score0.00732EPSS

Exploits0References1

Cisco•added 2015/02/11 10:52 p.m.•18 views

Cisco TelePresence IX5000 Series Web Management Vulnerability

A vulnerability in the administrative web management portal of Cisco TelePresence IX5000 Series devices could allow an authenticated, remote attacker to gain unauthorized access to certain pages in the web interface. The vulnerability is due to a failure to properly restrict access given to the...

6.5CVSS6.7AI score0.01974EPSS

Exploits0References1

Cisco•added 2015/02/11 5:49 p.m.•18 views

Cisco Prime Security Manager Cross-Site Scripting Vulnerability

A vulnerability in multiple web interface pages of Cisco Prime Security Manager could allow an unauthenticated, remote attacker to execute cross-site scripting XSS attacks or hijack user sessions. The vulnerability is due to a failure to properly validate user-supplied input in the Dashboard and...

4.3CVSS5.8AI score0.01792EPSS

Exploits0References1

Cisco•added 2014/08/29 1:53 p.m.•18 views

Cisco Intelligent Automation for Cloud Enumeration Vulnerability

A vulnerability in Cisco Intelligent Automation for Cloud could allow an unauthenticated, remote attacker to view sensitive information. The vulnerability is due to a failure to properly check for certain NULL sessions. An attacker could exploit this vulnerability by submitting crafted packets to...

5CVSS6.3AI score0.02949EPSS

Exploits0References1

Total number of security vulnerabilities5000