CVE Tracker

CVE ID	Severity	EPSS	Vendor	Description	Date	Status
CVE-2020-3153	High	25.1%	CiscoAnyConnect Secure	Cisco AnyConnect Secure Mobility Client for Windows allows for incorrect handling of directory paths. An attacker with valid credentials on Windows would be able to copy malicious files to arbitrary locations with system level privileges. This could include DLL pre-loading, DLL hijacking, and other related attacks.	Oct 24, 2022	KEV
CVE-2020-3433	High	4.5%	CiscoAnyConnect Secure	Cisco AnyConnect Secure Mobility Client for Windows interprocess communication (IPC) channel allows for insufficient validation of resources that are loaded by the application at run time. An attacker with valid credentials on Windows could execute code on the affected machine with SYSTEM privileges.	Oct 24, 2022	KEV
CVE-2019-15271	High	5.6%	CiscoRV Series Routers	A deserialization of untrusted data vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an attacker to execute code with root privileges.	Jun 8, 2022	KEV
CVE-2016-6367	High	23.1%	CiscoAdaptive Security Appliance (ASA)	A vulnerability in the command-line interface (CLI) parser of Cisco ASA software could allow an authenticated, local attacker to create a denial-of-service (DoS) condition or potentially execute code.	May 24, 2022	KEV
CVE-2016-6366	High	91.4%	CiscoAdaptive Security Appliance (ASA)	A buffer overflow vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco ASA software could allow an attacker to cause a reload of the affected system or to remotely execute code.	May 24, 2022	KEV
CVE-2022-20821	High	20.4%	CiscoIOS XR	Cisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container.	May 23, 2022	KEV
CVE-2009-2055	High	0.4%	CiscoIOS XR	Cisco IOS XR,when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).	Mar 25, 2022	KEV
CVE-2018-0147	High	4.0%	CiscoSecure Access Control System (ACS)	A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is due to insecure deserialization of user-supplied content by the affected software.	Mar 25, 2022	KEV
CVE-2018-0125	High	39.6%	CiscoVPN Routers	A vulnerability in the web interface of the Cisco VPN Routers could allow an unauthenticated, remote attacker to execute arbitrary code as root and gain full control of an affected system.	Mar 25, 2022	KEV
CVE-2015-0666	High	53.1%	CiscoPrime Data Center Network Manager (DCNM)	Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) allows remote attackers to read arbitrary files.	Mar 25, 2022	KEV
CVE-2017-3881	High	94.3%	CiscoIOS and IOS XE	A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges.	Mar 25, 2022	KEV
CVE-2010-3035	High	3.2%	CiscoIOS XR	Cisco IOS XR, when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).	Mar 25, 2022	KEV
CVE-2022-20708	High	13.0%	CiscoSmall Business RV160, RV260, RV340, and RV345 Series Routers	A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).	Mar 3, 2022	KEV
CVE-2022-20699	High	89.9%	CiscoSmall Business RV160, RV260, RV340, and RV345 Series Routers	A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).	Mar 3, 2022	KEV
CVE-2019-1652	High	93.0%	CiscoSmall Business RV320 and RV325 Dual Gigabit WAN VPN Routers	A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands.	Mar 3, 2022	KEV
CVE-2022-20701	High	6.1%	CiscoSmall Business RV160, RV260, RV340, and RV345 Series Routers	A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).	Mar 3, 2022	KEV
CVE-2017-12235	High	4.9%	CiscoIOS software	A vulnerability in the implementation of the PROFINET Discovery and Configuration Protocol (PN-DCP) for Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service.	Mar 3, 2022	KEV
CVE-2017-12233	High	6.5%	CiscoIOS software	There is a vulnerability in the implementation of the Common Industrial Protocol (CIP) feature in Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service.	Mar 3, 2022	KEV
CVE-2017-12231	High	6.8%	CiscoIOS software	A vulnerability in the implementation of Network Address Translation (NAT) functionality in Cisco IOS could allow an unauthenticated, remote attacker to cause a denial of service.	Mar 3, 2022	KEV
CVE-2017-12237	High	5.3%	CiscoIOS and IOS XE Software	A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS and Cisco IOS XE could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads to a denial of service.	Mar 3, 2022	KEV

CVE-2020-3153KEV

High

Cisco AnyConnect Secure Mobility Client for Windows allows for incorrect handling of directory paths. An attacker with valid credentials on Windows would be able to copy malicious files to arbitrary locations with system level privileges. This could include DLL pre-loading, DLL hijacking, and other related attacks.

CiscoEPSS 25.1%

CVE-2020-3433KEV

High

Cisco AnyConnect Secure Mobility Client for Windows interprocess communication (IPC) channel allows for insufficient validation of resources that are loaded by the application at run time. An attacker with valid credentials on Windows could execute code on the affected machine with SYSTEM privileges.

CiscoEPSS 4.5%

CVE-2019-15271KEV

High

A deserialization of untrusted data vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an attacker to execute code with root privileges.

CiscoEPSS 5.6%

CVE-2016-6367KEV

High

A vulnerability in the command-line interface (CLI) parser of Cisco ASA software could allow an authenticated, local attacker to create a denial-of-service (DoS) condition or potentially execute code.

CiscoEPSS 23.1%

CVE-2016-6366KEV

High

A buffer overflow vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco ASA software could allow an attacker to cause a reload of the affected system or to remotely execute code.

CiscoEPSS 91.4%

CVE-2022-20821KEV

High

Cisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container.

CiscoEPSS 20.4%

CVE-2009-2055KEV

High

Cisco IOS XR,when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).

CiscoEPSS 0.4%

CVE-2018-0147KEV

High

A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is due to insecure deserialization of user-supplied content by the affected software.

CiscoEPSS 4.0%

CVE-2018-0125KEV

High

A vulnerability in the web interface of the Cisco VPN Routers could allow an unauthenticated, remote attacker to execute arbitrary code as root and gain full control of an affected system.

CiscoEPSS 39.6%

CVE-2015-0666KEV

High

Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) allows remote attackers to read arbitrary files.

CiscoEPSS 53.1%

CVE-2017-3881KEV

High

A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges.

CiscoEPSS 94.3%

CVE-2010-3035KEV

High

Cisco IOS XR, when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).

CiscoEPSS 3.2%

CVE-2022-20708KEV

High

A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands.

A vulnerability in the implementation of the PROFINET Discovery and Configuration Protocol (PN-DCP) for Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service.

CiscoEPSS 4.9%

CVE-2017-12233KEV

High

There is a vulnerability in the implementation of the Common Industrial Protocol (CIP) feature in Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service.

CiscoEPSS 6.5%

CVE-2017-12231KEV

High

A vulnerability in the implementation of Network Address Translation (NAT) functionality in Cisco IOS could allow an unauthenticated, remote attacker to cause a denial of service.

CiscoEPSS 6.8%

CVE-2017-12237KEV

High

A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS and Cisco IOS XE could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads to a denial of service.

CiscoEPSS 5.3%

1 2 3 4 5 6