CVE Tracker

CVE ID	Severity	EPSS	Vendor	Description	Date	Status
CVE-2023-20109	High	0.6%	CiscoIOS and IOS XE	Cisco IOS and IOS XE contain an out-of-bounds write vulnerability in the Group Encrypted Transport VPN (GET VPN) feature that could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute malicious code or cause a device to crash.	Oct 10, 2023	KEV
CVE-2023-20269	High	0.9%	CiscoAdaptive Security Appliance and Firepower Threat Defense	Cisco Adaptive Security Appliance and Firepower Threat Defense contain an unauthorized access vulnerability that could allow an unauthenticated, remote attacker to conduct a brute force attack in an attempt to identify valid username and password combinations or establish a clientless SSL VPN session with an unauthorized user.	Sep 13, 2023	KEV
CVE-2016-6415	High	93.0%	CiscoIOS, IOS XR, and IOS XE	Cisco IOS, IOS XR, and IOS XE contain insufficient condition checks in the part of the code that handles Internet Key Exchange version 1 (IKEv1) security negotiation requests. contains an information disclosure vulnerability in the Internet Key Exchange version 1 (IKEv1) that could allow an attacker to retrieve memory contents. Successful exploitation could allow the attacker to retrieve memory contents, which can lead to information disclosure.	May 19, 2023	KEV
CVE-2004-1464	High	1.7%	CiscoIOS	Cisco IOS contains an unspecified vulnerability that may block further telnet, reverse telnet, Remote Shell (RSH), Secure Shell (SSH), and in some cases, Hypertext Transport Protocol (HTTP) access to the Cisco device.	May 19, 2023	KEV
CVE-2017-6742	High	5.6%	CiscoIOS and IOS XE Software	The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload.	Apr 19, 2023	KEV
CVE-2020-3153	High	25.1%	CiscoAnyConnect Secure	Cisco AnyConnect Secure Mobility Client for Windows allows for incorrect handling of directory paths. An attacker with valid credentials on Windows would be able to copy malicious files to arbitrary locations with system level privileges. This could include DLL pre-loading, DLL hijacking, and other related attacks.	Oct 24, 2022	KEV
CVE-2020-3433	High	4.5%	CiscoAnyConnect Secure	Cisco AnyConnect Secure Mobility Client for Windows interprocess communication (IPC) channel allows for insufficient validation of resources that are loaded by the application at run time. An attacker with valid credentials on Windows could execute code on the affected machine with SYSTEM privileges.	Oct 24, 2022	KEV
CVE-2019-15271	High	5.6%	CiscoRV Series Routers	A deserialization of untrusted data vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an attacker to execute code with root privileges.	Jun 8, 2022	KEV
CVE-2016-6367	High	23.1%	CiscoAdaptive Security Appliance (ASA)	A vulnerability in the command-line interface (CLI) parser of Cisco ASA software could allow an authenticated, local attacker to create a denial-of-service (DoS) condition or potentially execute code.	May 24, 2022	KEV
CVE-2016-6366	High	91.4%	CiscoAdaptive Security Appliance (ASA)	A buffer overflow vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco ASA software could allow an attacker to cause a reload of the affected system or to remotely execute code.	May 24, 2022	KEV
CVE-2022-20821	High	20.4%	CiscoIOS XR	Cisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container.	May 23, 2022	KEV
CVE-2009-2055	High	0.4%	CiscoIOS XR	Cisco IOS XR,when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).	Mar 25, 2022	KEV
CVE-2018-0147	High	4.0%	CiscoSecure Access Control System (ACS)	A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is due to insecure deserialization of user-supplied content by the affected software.	Mar 25, 2022	KEV
CVE-2018-0125	High	39.6%	CiscoVPN Routers	A vulnerability in the web interface of the Cisco VPN Routers could allow an unauthenticated, remote attacker to execute arbitrary code as root and gain full control of an affected system.	Mar 25, 2022	KEV
CVE-2015-0666	High	53.1%	CiscoPrime Data Center Network Manager (DCNM)	Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) allows remote attackers to read arbitrary files.	Mar 25, 2022	KEV
CVE-2017-3881	High	94.3%	CiscoIOS and IOS XE	A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges.	Mar 25, 2022	KEV
CVE-2010-3035	High	3.2%	CiscoIOS XR	Cisco IOS XR, when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).	Mar 25, 2022	KEV
CVE-2022-20708	High	13.0%	CiscoSmall Business RV160, RV260, RV340, and RV345 Series Routers	A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).	Mar 3, 2022	KEV
CVE-2022-20699	High	89.9%	CiscoSmall Business RV160, RV260, RV340, and RV345 Series Routers	A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).	Mar 3, 2022	KEV
CVE-2019-1652	High	93.0%	CiscoSmall Business RV320 and RV325 Dual Gigabit WAN VPN Routers	A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands.	Mar 3, 2022	KEV

CVE-2023-20109KEV

High

Cisco IOS and IOS XE contain an out-of-bounds write vulnerability in the Group Encrypted Transport VPN (GET VPN) feature that could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute malicious code or cause a device to crash.

CiscoEPSS 0.6%

CVE-2023-20269KEV

High

Cisco Adaptive Security Appliance and Firepower Threat Defense contain an unauthorized access vulnerability that could allow an unauthenticated, remote attacker to conduct a brute force attack in an attempt to identify valid username and password combinations or establish a clientless SSL VPN session with an unauthorized user.

CiscoEPSS 0.9%

CVE-2016-6415KEV

High

Cisco IOS, IOS XR, and IOS XE contain insufficient condition checks in the part of the code that handles Internet Key Exchange version 1 (IKEv1) security negotiation requests. contains an information disclosure vulnerability in the Internet Key Exchange version 1 (IKEv1) that could allow an attacker to retrieve memory contents. Successful exploitation could allow the attacker to retrieve memory contents, which can lead to information disclosure.

CiscoEPSS 93.0%

CVE-2004-1464KEV

High

Cisco IOS contains an unspecified vulnerability that may block further telnet, reverse telnet, Remote Shell (RSH), Secure Shell (SSH), and in some cases, Hypertext Transport Protocol (HTTP) access to the Cisco device.

CiscoEPSS 1.7%

CVE-2017-6742KEV

High

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload.

CiscoEPSS 5.6%

CVE-2020-3153KEV

High

Cisco AnyConnect Secure Mobility Client for Windows allows for incorrect handling of directory paths. An attacker with valid credentials on Windows would be able to copy malicious files to arbitrary locations with system level privileges. This could include DLL pre-loading, DLL hijacking, and other related attacks.

CiscoEPSS 25.1%

CVE-2020-3433KEV

High

Cisco AnyConnect Secure Mobility Client for Windows interprocess communication (IPC) channel allows for insufficient validation of resources that are loaded by the application at run time. An attacker with valid credentials on Windows could execute code on the affected machine with SYSTEM privileges.

CiscoEPSS 4.5%

CVE-2019-15271KEV

High

A deserialization of untrusted data vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an attacker to execute code with root privileges.

CiscoEPSS 5.6%

CVE-2016-6367KEV

High

A vulnerability in the command-line interface (CLI) parser of Cisco ASA software could allow an authenticated, local attacker to create a denial-of-service (DoS) condition or potentially execute code.

CiscoEPSS 23.1%

CVE-2016-6366KEV

High

A buffer overflow vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco ASA software could allow an attacker to cause a reload of the affected system or to remotely execute code.

CiscoEPSS 91.4%

CVE-2022-20821KEV

High

Cisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container.

CiscoEPSS 20.4%

CVE-2009-2055KEV

High

Cisco IOS XR,when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).

CiscoEPSS 0.4%

CVE-2018-0147KEV

High

A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is due to insecure deserialization of user-supplied content by the affected software.

CiscoEPSS 4.0%

CVE-2018-0125KEV

High

A vulnerability in the web interface of the Cisco VPN Routers could allow an unauthenticated, remote attacker to execute arbitrary code as root and gain full control of an affected system.

CiscoEPSS 39.6%

CVE-2015-0666KEV

High

Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) allows remote attackers to read arbitrary files.

CiscoEPSS 53.1%

CVE-2017-3881KEV

High

A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges.

CiscoEPSS 94.3%

CVE-2010-3035KEV

High

Cisco IOS XR, when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).

CiscoEPSS 3.2%

CVE-2022-20708KEV

High

A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands.

CiscoEPSS 93.0%

1 2 3 4 5