Lucene search
K
CiscoMost viewed

5226 matches found

Cisco
Cisco
added 2006/09/20 6:13 p.m.17 views

Cisco Intrusion Prevention System Scanning Bypass Vulnerability

Cisco Intrusion Prevention System versions prior to 5.12 contain a vulnerability that could allow an unauthenticated, remote attacker to bypass security scanning. This vulnerability is due to a failure to properly handle fragmented packets. An unauthenticated, remote attacker can exploit this...

7.5CVSS6.5AI score0.04195EPSS
Exploits0References1
Cisco
Cisco
added 2006/05/24 4:0 p.m.17 views

Windows VPN Client Local Privilege Escalation Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7AI score
Exploits0References1
Cisco
Cisco
added 2006/04/19 3:0 p.m.17 views

Cisco IOS XR MPLS Vulnerabilities

...

2.3AI score
Exploits0References1
Cisco
Cisco
added 2005/04/12 4:0 p.m.17 views

Crafted ICMP Messages Can Cause Denial of Service

...

3.1AI score
Exploits0References1
Cisco
Cisco
added 2004/02/03 4:0 p.m.17 views

Cisco 6000/6500/7600 Crafted Layer 2 Frame Vulnerability

...

2.3AI score
Exploits0References1
Cisco
Cisco
added 2003/01/25 2:0 p.m.17 views

MS SQL Worm Mitigation Recommendations

...

1.4AI score
Exploits0References1
Cisco
Cisco
added 2002/05/23 4:0 p.m.17 views

CBOS - Improving Resilience to Denial-of-Service Attacks

...

3.2AI score
Exploits0References1Affected Software1
Cisco
Cisco
added 2002/04/09 4:0 p.m.17 views

Aironet Telnet Vulnerability

...

5CVSS2AI score0.01657EPSS
Exploits0References1
Cisco
Cisco
added 2001/11/14 4:0 p.m.17 views

ICMP Unreachable Vulnerability in Cisco 12000 Series Internet Router

...

5CVSS3AI score0.01675EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2001/05/22 3:0 p.m.17 views

More Multiple Vulnerabilities in CBOS

...

1.8AI score
Exploits0References1
Cisco
Cisco
added 2001/03/28 4:0 p.m.17 views

VPN3000 Concentrator TELNET Vulnerability

...

2.2AI score
Exploits0References1
Cisco
Cisco
added 1999/03/11 4:0 p.m.17 views

Cisco 7xx TCP and HTTP Vulnerabilities

...

0.3AI score
Exploits0References1
Cisco
Cisco
added 1999/01/11 4:0 p.m.17 views

Cisco IOS Syslog Crash

...

1.1AI score
Exploits0References1
Cisco
Cisco
added 1998/05/13 3:0 p.m.17 views

Cisco Web Cache Control Protocol Router Vulnerability

...

2.5AI score
Exploits0References1
Cisco
Cisco
added 2026/04/15 4:0 p.m.16 views

Cisco ThousandEyes Enterprise Agent Arbitrary File Overwrite Vulnerability

A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent could allow an authenticated, local attacker with low privileges to overwrite arbitrary files on the local system of an affected device. This vulnerability is due to improper access controls on files that are on the local file syst...

5.5CVSS5.9AI score0.00129EPSS
Exploits0References1
Cisco
Cisco
added 2026/04/01 4:0 p.m.16 views

Cisco Integrated Management Controller Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Integrated Management Controller IMC could allow a remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. For more information about these vulnerabilities, see the Details "details"...

6.1CVSS5.9AI score0.00184EPSS
Exploits0References1
Cisco
Cisco
added 2025/09/24 4:0 p.m.16 views

Cisco IOS XE Software HTTP API Command Injection Vulnerability

A vulnerability in the HTTP API subsystem of Cisco IOS XE Software could allow a remote attacker to inject commands that will execute with root privileges into the underlying operating system. This vulnerability is due to insufficient input validation. An attacker with administrative privileges...

8.8CVSS7.6AI score0.00468EPSS
Exploits0References1
Cisco
Cisco
added 2025/02/26 4:0 p.m.16 views

Cisco Application Policy Infrastructure Controller Vulnerabilities

Multiple vulnerabilities in Cisco Application Policy Infrastructure Controller APIC could allow an authenticated attacker to access sensitive information, execute arbitrary commands, cause a denial of service DoS condition, or perform cross-site scripting XSS attacks. To exploit these...

6CVSS5.8AI score0.0026EPSS
Exploits0References1
Cisco
Cisco
added 2024/11/06 4:0 p.m.16 views

Cisco Identity Services Engine Vulnerabilities

Multiple vulnerabilities in Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to either bypass the authorization mechanisms or conduct a cross-site scripting XSS attack. For more information about these vulnerabilities, see the Details "details" section of this...

4.3CVSS4.7AI score0.00344EPSS
Exploits0References1
Cisco
Cisco
added 2024/10/23 4:0 p.m.16 views

Cisco Firepower Threat Defense Software and Cisco FirePOWER Services TCP/IP Traffic with Snort 2 and Snort 3 Denial of Service Vulnerability

A vulnerability in the TCP/IP traffic handling function of the Snort Detection Engine of Cisco Firepower Threat Defense FTD Software and Cisco FirePOWER Services could allow an unauthenticated, remote attacker to cause legitimate network traffic to be dropped, resulting in a denial of service DoS...

8.6CVSS8.5AI score0.00736EPSS
Exploits0References1
Cisco
Cisco
added 2024/10/23 4:0 p.m.16 views

Cisco Adaptive Security Appliance Software SSH Server Resource Denial of Service Vulnerability

A vulnerability in the SSH server of Cisco Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition for the SSH server of an affected device. This vulnerability is due to a logic error when an SSH session is established. A...

5.3CVSS5.5AI score0.00469EPSS
Exploits0References1
Cisco
Cisco
added 2024/10/23 4:0 p.m.16 views

Cisco Secure Firewall Management Center Software Arbitrary File Read Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software, formerly Firepower Management Center Software, could allow an authenticated, remote attacker to read arbitrary files from the underlying operating system. This vulnerability exists becau...

6.5CVSS6.3AI score0.00615EPSS
Exploits0References1
Cisco
Cisco
added 2024/10/23 4:0 p.m.16 views

Cisco Firepower Threat Defense Software for Firepower 2100 Series TLS Denial of Service Vulnerability

A vulnerability in the TLS processing feature of Cisco Firepower Threat Defense FTD Software for Cisco Firepower 2100 Series could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an issue that occurs when TLS...

8.6CVSS8.6AI score0.00716EPSS
Exploits0References1
Cisco
Cisco
added 2024/10/16 4:0 p.m.16 views

Cisco ATA 190 Series Analog Telephone Adapter Firmware Vulnerabilities

Multiple vulnerabilities in Cisco ATA 190 Series Analog Telephone Adapter firmware, both on-premises and multiplatform, could allow a remote attacker to delete or change the configuration, execute commands as the root user, conduct a cross-site scripting XSS attack against a user of the interface...

8.2CVSS6.7AI score0.00713EPSS
Exploits0References1
Cisco
Cisco
added 2024/10/02 4:0 p.m.16 views

Cisco Nexus Dashboard Orchestrator SSL/TLS Certificate Validation Vulnerability

A vulnerability in the SSL/TLS implementation of Cisco Nexus Dashboard Orchestrator NDO could allow an unauthenticated, remote attacker to intercept sensitive information from an affected device. This vulnerability exists because the Cisco NDO Validate Peer Certificate site management feature...

5.9CVSS5.7AI score0.00307EPSS
Exploits0References1
Cisco
Cisco
added 2024/10/02 4:0 p.m.16 views

Cisco Expressway Series Privilege Escalation Vulnerability

A vulnerability in the restricted shell of Cisco Expressway Series could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit this vulnerability, the attacker must have Administrator-level...

6CVSS6.5AI score0.0055EPSS
Exploits0References1
Cisco
Cisco
added 2024/09/04 4:0 p.m.16 views

Cisco Meraki Systems Manager Agent for Windows Privilege Escalation Vulnerability

A vulnerability in Cisco Meraki Systems Manager SM Agent for Windows could allow an authenticated, local attacker to execute arbitrary code with elevated privileges. This vulnerability is due to incorrect handling of directory search paths at runtime. A low-privileged attacker could exploit this...

7.3CVSS7.3AI score0.002EPSS
Exploits0References1
Cisco
Cisco
added 2024/08/28 4:0 p.m.16 views

Cisco NX-OS Software Command Injection Vulnerability

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, low-privileged, local attacker to execute arbitrary commands on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of arguments for a specific CLI command. An...

4.4CVSS5.3AI score0.00227EPSS
Exploits0References1
Cisco
Cisco
added 2024/07/17 4:0 p.m.16 views

Cisco Expressway Series Open Redirect Vulnerability

A vulnerability in the web-based management interface of Cisco Expressway Series could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability is due to improper input validation of HTTP request parameters. An attacker could exploit this...

4.7CVSS4.9AI score0.00378EPSS
Exploits0References1
Cisco
Cisco
added 2024/07/10 4:0 p.m.16 views

Cisco IOS XR Software Secure Boot Bypass Vulnerability

A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker with high privileges to bypass the Cisco Secure Boot functionality and load unverified software on an affected device. To exploit this successfully, the attacker must have root-system...

6.7CVSS5.8AI score0.00191EPSS
Exploits0References1
Cisco
Cisco
added 2020/01/22 4:0 p.m.16 views

Cisco IOS XR Software Intermediate System-to-Intermediate System Denial of Service Vulnerability

A vulnerability in the implementation of the Intermediate System-to-Intermediate System IS-IS routing protocol functionality in Cisco IOS XR Software could allow an authenticated, remote attacker to cause a denial of service DoS condition in the IS-IS process. The vulnerability is due to improper...

7.7CVSS2.7AI score0.01513EPSS
Exploits0References1
Cisco
Cisco
added 2016/12/07 4:0 p.m.16 views

Cisco Prime Collaboration Assurance Cross-Site Scripting Vulnerability

A vulnerability in the web framework code of Cisco Prime Collaboration Assurance could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against the user of the web interface. The vulnerability is due to insufficient input validation of some parameters that ar...

4.3CVSS6.1AI score0.01799EPSS
Exploits0References1
Cisco
Cisco
added 2015/03/27 7:44 p.m.16 views

Cisco Unified Call Manager Arbitrary File Retrieval Vulnerability

A vulnerability in Cisco Unified Call Manager Cisco Unified CM could allow an authenticated, remote attacker to retrieve arbitrary files. The vulnerability is due to improper security restrictions by the affected application while handling requests for resources. An authenticated, remote attacker...

4CVSS6.4AI score0.01327EPSS
Exploits0References1
Cisco
Cisco
added 2014/09/23 1:33 p.m.16 views

Cisco Unified Communications Domain Manager High CPU Utilization Vulnerability

A vulnerability in Cisco Unified Communications Domain Manager Platform Software could allow an unauthenticated, remote attacker to cause high CPU utilization. The vulnerability is due to improper handling of crafted TCP packets. An attacker could exploit this vulnerability by sending crafted TCP...

5CVSS6.5AI score0.03268EPSS
Exploits0References1
Cisco
Cisco
added 2014/07/07 8:0 p.m.16 views

Cisco Small Cell Command Execution Vulnerability

A vulnerability in the DHCP client implementation of Cisco Small Cell products could allow an unauthenticated, adjacent attacker to execute commands and possibly take full control of the affected device. The vulnerability is due to improper parsing of crafted DHCP messages. An attacker could...

6.8CVSS6.9AI score0.01304EPSS
Exploits0References1
Cisco
Cisco
added 2014/03/13 9:13 p.m.16 views

Cisco Intelligent Automation for Cloud Cryptographic Implementation Issues

Issues in the cryptographic implementation of Cisco Intelligent Automation for Cloud Cisco IAC may allow an unauthenticated, remote attacker to recover cryptographic material used in all Cisco IAC installations. The issues are due to the inclusion of fixed cryptographic material in the product...

5CVSS6.5AI score0.01173EPSS
Exploits1References1
Cisco
Cisco
added 2013/07/17 4:11 p.m.16 views

Cisco Unified Communications Manager Privilege Escalation Vulnerability

A vulnerability in Cisco Unified Communications Manager Unified CM could allow an authenticated, local attacker to escalate privileges on the system. The vulnerability is due to improper file permissions on a privileged system binary. An attacker could exploit this vulnerability by modifying a...

6.8CVSS2.7AI score0.00388EPSS
Exploits0References1
Cisco
Cisco
added 2011/07/06 4:0 p.m.16 views

Cisco Content Services Gateway Denial of Service Vulnerability

...

2.6AI score
Exploits0References1
Cisco
Cisco
added 2011/03/30 4:0 p.m.16 views

Cisco Network Admission Control Guest Server System Software Authentication Bypass Vulnerability

...

3.4AI score
Exploits0References1
Cisco
Cisco
added 2007/01/24 12:0 a.m.16 views

IPv6 Routing Header Vulnerability

...

1.5AI score
Exploits0References1
Cisco
Cisco
added 2006/01/18 4:0 p.m.16 views

Cisco Call Manager Privilege Escalation

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

6.5CVSS6.3AI score0.02119EPSS
Exploits0References1
Cisco
Cisco
added 2005/11/02 3:0 p.m.16 views

Cisco Airespace Wireless LAN Controllers Allow Unencrypted Network Access

...

5CVSS4.5AI score0.01576EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2004/12/15 4:0 p.m.16 views

Cisco Unity Integrated with Exchange Has Default Passwords

...

2.6AI score
Exploits0References1
Cisco
Cisco
added 2004/11/11 4:0 p.m.16 views

Crafted Timed Attack Evades Cisco Security Agent Protections

...

2AI score
Exploits0References1
Cisco
Cisco
added 2004/04/07 4:0 p.m.16 views

A Default Username and Password in WLSE and HSE Devices

...

10CVSS2AI score0.04579EPSS
Exploits0References1Affected Software2
Cisco
Cisco
added 2003/12/10 4:0 p.m.16 views

Vulnerability in Authentication Library for ACNS

...

3.1AI score
Exploits0References1
Cisco
Cisco
added 2003/12/02 5:0 p.m.16 views

SNMP Trap Reveals WEP Key in Cisco Aironet Access Point

...

2.5AI score
Exploits0References1
Cisco
Cisco
added 2003/05/15 3:0 p.m.16 views

Cisco IOS Software Processing of SAA Packets

...

3.3AI score
Exploits0References1
Cisco
Cisco
added 2002/05/15 6:0 p.m.16 views

Content Service Switch Web Management HTTP Processing Vulnerabilities

...

1AI score
Exploits0References1Affected Software2
Cisco
Cisco
added 2001/10/03 4:0 p.m.16 views

Cisco PIX Firewall Authentication Denial of Service Vulnerability

...

3AI score
Exploits0References1
Total number of security vulnerabilities5000