Home/Product/cisco ios xe
Product

cisco ios xe

500 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-20363
>= 3.2.0sg and <= 17.17.1
A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software, Cisco Secure Firewall Thr
9.0CRITICAL
 CVE-2025-20352
all versions
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software and Cisco IOS XE Software could a
7.7HIGH
 CVE-2025-20338
all versions
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with administrative privileges to
6.0MEDIUM
 CVE-2025-20221
all versions
A vulnerability in the packet filtering features of Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker t
5.3MEDIUM
 CVE-2025-20214
all versions
A vulnerability in the Network Configuration Access Control Module (NACM) of Cisco IOS XE Software could allow an authenticated, r
4.3MEDIUM
 CVE-2025-20202
all versions
A vulnerability in Cisco IOS XE Wireless Controller Software could allow an unauthenticated, adjacent attacker to cause a denial o
7.4HIGH
 CVE-2025-20201
all versions
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to eleva
6.7MEDIUM
 CVE-2025-20200
all versions
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to eleva
6.7MEDIUM
 CVE-2025-20199
all versions
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevat
4.6MEDIUM
 CVE-2025-20198
all versions
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to eleva
4.6MEDIUM
 CVE-2025-20197
all versions
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevat
6.7MEDIUM
 CVE-2025-20196
< 17.15.2
A vulnerability in the Cisco IOx application hosting environment of Cisco IOS Software and Cisco IOS XE Software could allow an un
5.3MEDIUM
 CVE-2025-20195
all versions
A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to
4.3MEDIUM
 CVE-2025-20194
all versions
A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an authenticated, low-privileged, remot
5.4MEDIUM
 CVE-2025-20193
all versions
A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an authenticated, low-privileged, remot
6.5MEDIUM
 CVE-2025-20190
all versions
A vulnerability in the lobby ambassador web interface of Cisco IOS XE Wireless Controller Software could allow an authenticated, r
6.5MEDIUM
 CVE-2025-20189
all versions
A vulnerability in the Cisco Express Forwarding functionality of Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Rout
7.4HIGH
 CVE-2025-20188
all versions
A vulnerability in the Out-of-Band Access Point (AP) Image Download, the Clean Air Spectral Recording, and the client debug bundle
10.0CRITICAL
 CVE-2025-20186
all versions
A vulnerability in the web-based management interface of the Wireless LAN Controller feature of Cisco IOS XE Software could allow
8.8HIGH
 CVE-2025-20162
all versions
A vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to
8.6HIGH
 CVE-2025-20155
all versions
A vulnerability in the bootstrap loading of Cisco IOS XE Software could allow an authenticated, local attacker to write arbitrary
6.0MEDIUM
 CVE-2025-20154
>= 16.6.1 and <= 17.2.3
A vulnerability in the Two-Way Active Measurement Protocol (TWAMP) server feature of Cisco IOS Software and Cisco IOS XE Software
8.6HIGH
 CVE-2025-20140
all versions
A vulnerability in the Wireless Network Control daemon (wncd) of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could a
7.4HIGH
 CVE-2025-20176
all versions
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacke
7.7HIGH
 CVE-2025-20175
all versions
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacke
7.7HIGH
 CVE-2025-20174
all versions
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacke
7.7HIGH
 CVE-2025-20173
all versions
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacke
7.7HIGH
 CVE-2025-20172
all versions
A vulnerability in the SNMP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an authe
7.7HIGH
 CVE-2025-20171
all versions
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacke
7.7HIGH
 CVE-2025-20170
all versions
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacke
7.7HIGH
 CVE-2025-20169
all versions
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacke
7.7HIGH
 CVE-2024-20510
all versions
A vulnerability in the Central Web Authentication (CWA) feature of Cisco IOS XE Software for Wireless Controllers could allow an u
4.7MEDIUM
 CVE-2024-20480
all versions
A vulnerability in the DHCP Snooping feature of Cisco IOS XE Software on Software-Defined Access (SD-Access) fabric edge nodes cou
8.6HIGH
 CVE-2024-20467
all versions
A vulnerability in the implementation of the IPv4 fragmentation reassembly code in Cisco IOS XE Software could allow an unauthenti
8.6HIGH
 CVE-2024-20464
all versions
A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco IOS XE Software could allow an unauthenticated, remot
8.6HIGH
 CVE-2024-20455
all versions
A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense (UTD) component of Cisco IOS XE
8.6HIGH
 CVE-2024-20437
all versions
A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to
8.1HIGH
 CVE-2024-20436
all versions
A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service feature is enabled could allow an u
8.6HIGH
 CVE-2024-20434
all versions
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) cond
4.3MEDIUM
 CVE-2024-20433
all versions
A vulnerability in the Resource Reservation Protocol (RSVP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an
8.6HIGH
 CVE-2024-20414
all versions
A vulnerability in the web UI feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attac
6.5MEDIUM
 CVE-2024-20313
all versions
A vulnerability in the OSPF version 2 (OSPFv2) feature of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker
7.4HIGH
 CVE-2024-20308
all versions
A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, re
8.6HIGH
 CVE-2024-20307
all versions
A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, re
6.8MEDIUM
 CVE-2024-20354
>= 16.12.4a and < 17.1.0
A vulnerability in the handling of encrypted wireless frames of Cisco Aironet Access Point (AP) Software could allow an unauthenti
4.7MEDIUM
 CVE-2024-20324
all versions
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, low-privileged, local attacker to access WLAN co
5.5MEDIUM
 CVE-2024-20316
all versions
A vulnerability in the data model interface (DMI) services of Cisco IOS XE Software could allow an unauthenticated, remote attacke
5.8MEDIUM
 CVE-2024-20314
all versions
A vulnerability in the IPv4 Software-Defined Access (SD-Access) fabric edge node feature of Cisco IOS XE Software could allow an u
8.6HIGH
 CVE-2024-20312
all versions
A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS Software and Cisco IOS XE Software
7.4HIGH
 CVE-2024-20311
all versions
A vulnerability in the Locator ID Separation Protocol (LISP) feature of Cisco IOS Software and Cisco IOS XE Software could allow a
8.6HIGH
 CVE-2024-20309
all versions
A vulnerability in auxiliary asynchronous port (AUX) functions of Cisco IOS XE Software could allow an authenticated, local attack
5.6MEDIUM
 CVE-2024-20306
all versions
A vulnerability in the Unified Threat Defense (UTD) configuration CLI of Cisco IOS XE Software could allow an authenticated, local
6.0MEDIUM
 CVE-2024-20303
all versions
A vulnerability in the multicast DNS (mDNS) gateway feature of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could all
7.4HIGH
 CVE-2024-20278
all versions
A vulnerability in the NETCONF feature of Cisco IOS XE Software could allow an authenticated, remote attacker to elevate privilege
6.5MEDIUM
 CVE-2024-20271
< 17.3.8
A vulnerability in the IP packet processing of Cisco Access Point (AP) Software could allow an unauthenticated, remote attacker to
8.6HIGH
 CVE-2024-20259
all versions
A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an
8.6HIGH
 CVE-2023-20246
>= 17.12 and < 17.12.2
Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remo
5.8MEDIUM
 CVE-2023-20273
>= 17.3 and < 17.3.8a
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to inject commands wi
7.2HIGH
 CVE-2023-20198
>= 16.12 and < 16.12.10a
Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS XE Softwa
10.0CRITICAL
 CVE-2023-44487
< 17.15.1
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams q
7.5HIGH
 CVE-2023-20235
< 17.3.1
A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in
6.5MEDIUM
 CVE-2023-20231
all versions
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to perform an injection attac
8.8HIGH
 CVE-2023-20227
all versions
A vulnerability in the Layer 2 Tunneling Protocol (L2TP) feature of Cisco IOS XE Software could allow an unauthenticated, remote a
8.6HIGH
 CVE-2023-20226
all versions
A vulnerability in Application Quality of Experience (AppQoE) and Unified Threat Defense (UTD) on Cisco IOS XE Software could allo
8.6HIGH
 CVE-2023-20202
all versions
A vulnerability in the Wireless Network Control daemon (wncd) of Cisco IOS XE Software for Wireless LAN Controllers could allow an
6.1MEDIUM
 CVE-2023-20187
all versions
A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggreg
8.6HIGH
 CVE-2023-20186
all versions
A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS Software and Cisco IOS XE Software
8.0HIGH
 CVE-2023-20109
all versions
A vulnerability in the Cisco Group Encrypted Transport VPN (GET VPN) feature of Cisco IOS Software and Cisco IOS XE Software could
6.6MEDIUM
 CVE-2023-20033
all versions
A vulnerability in Cisco IOS XE Software for Cisco Catalyst 3650 and Catalyst 3850 Series Switches could allow an unauthenticated,
8.6HIGH
 CVE-2023-20100
all versions
A vulnerability in the access point (AP) joining process of the Control and Provisioning of Wireless Access Points (CAPWAP) protoc
6.8MEDIUM
 CVE-2023-20097
< 16.12.8
A vulnerability in Cisco access points (AP) software could allow an authenticated, local attacker to inject arbitrary commands and
4.6MEDIUM
 CVE-2023-20082
< 17.3.7
A vulnerability in Cisco IOS XE Software for Cisco Catalyst 9300 Series Switches could allow an authenticated, local attacker with
6.1MEDIUM
 CVE-2023-20081
all versions
A vulnerability in the IPv6 DHCP (DHCPv6) client module of Cisco Adaptive Security Appliance (ASA) Software, Cisco Firepower Threa
6.8MEDIUM
 CVE-2023-20080
all versions
A vulnerability in the IPv6 DHCP version 6 (DHCPv6) relay and server features of Cisco IOS and IOS XE Software could allow an unau
8.6HIGH
 CVE-2023-20072
all versions
A vulnerability in the fragmentation handling code of tunnel protocol packets in Cisco IOS XE Software could allow an unauthentica
8.6HIGH
 CVE-2023-20067
all versions
A vulnerability in the HTTP-based client profiling feature of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could allo
7.4HIGH
 CVE-2023-20066
all versions
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to perform a directory traver
6.5MEDIUM
 CVE-2023-20065
all versions
A vulnerability in the Cisco IOx application hosting subsystem of Cisco IOS XE Software could allow an authenticated, local attack
7.8HIGH
 CVE-2023-20056
< 16.12.8
A vulnerability in the management CLI of Cisco access point (AP) software could allow an authenticated, local attacker to cause a
6.5MEDIUM
 CVE-2023-20029
all versions
A vulnerability in the Meraki onboarding feature of Cisco IOS XE Software could allow an authenticated, local attacker to gain roo
4.4MEDIUM
 CVE-2023-20027
all versions
A vulnerability in the implementation of the IPv4 Virtual Fragmentation Reassembly (VFR) feature of Cisco IOS XE Software could al
8.6HIGH
 CVE-2023-20076
< 17.6.5
A vulnerability in the Cisco IOx application hosting environment could allow an authenticated, remote attacker to execute arbitrar
7.2HIGH
 CVE-2022-20944
all versions
A vulnerability in the software image verification functionality of Cisco IOS XE Software for Cisco Catalyst 9200 Series Switches
6.1MEDIUM
 CVE-2022-20920
all versions
A vulnerability in the SSH implementation of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote att
7.7HIGH
 CVE-2022-20915
all versions
A vulnerability in the implementation of IPv6 VPN over MPLS (6VPE) with Zone-Based Firewall (ZBFW) of Cisco IOS XE Software could
7.4HIGH
 CVE-2022-20870
all versions
A vulnerability in the egress MPLS packet processing function of Cisco IOS XE Software for Cisco Catalyst 3650, Catalyst 3850, and
8.6HIGH
 CVE-2022-20837
all versions
A vulnerability in the DNS application layer gateway (ALG) functionality that is used by Network Address Translation (NAT) in Cisc
8.6HIGH
 CVE-2022-20919
all versions
A vulnerability in the processing of malformed Common Industrial Protocol (CIP) packets that are sent to Cisco IOS Software and Ci
8.6HIGH
 CVE-2022-20856
all versions
A vulnerability in the processing of Control and Provisioning of Wireless Access Points (CAPWAP) Mobility messages in Cisco IOS XE
8.6HIGH
 CVE-2022-20855
all versions
A vulnerability in the self-healing functionality of Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst Access Po
7.9HIGH
 CVE-2022-20851
all versions
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to perform an injecti
5.5MEDIUM
 CVE-2022-20848
all versions
A vulnerability in the UDP processing functionality of Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst 9100 Se
8.6HIGH
 CVE-2022-20847
all versions
A vulnerability in the DHCP processing functionality of Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family cou
8.6HIGH
 CVE-2022-20810
all versions
A vulnerability in the Simple Network Management Protocol (SNMP) of Cisco IOS XE Wireless Controller Software for the Catalyst 900
6.5MEDIUM
 CVE-2021-27853
all versions
Layer 2 network filtering capabilities such as IPv6 RA guard or ARP inspection can be bypassed using combinations of VLAN 0 header
4.7MEDIUM
 CVE-2022-20727
all versions
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to i
5.5MEDIUM
 CVE-2022-20725
all versions
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to i
5.5MEDIUM
 CVE-2022-20724
all versions
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to i
5.5MEDIUM
 CVE-2022-20723
all versions
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to i
5.5MEDIUM
 CVE-2022-20722
all versions
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to i
5.5MEDIUM
 CVE-2022-20721
all versions
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to i
5.5MEDIUM
 CVE-2022-20720
all versions
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to i
5.5MEDIUM
 CVE-2022-20719
all versions
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to i
5.5MEDIUM
 CVE-2022-20718
all versions
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to i
5.5MEDIUM
 CVE-2022-20697
all versions
A vulnerability in the web services interface of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote
8.6HIGH
 CVE-2022-20694
all versions
A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of Cisco IOS XE Software could allo
6.8MEDIUM
 CVE-2022-20693
all versions
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to perform an injecti
4.7MEDIUM
 CVE-2022-20692
all versions
A vulnerability in the NETCONF over SSH feature of Cisco IOS XE Software could allow a low-privileged, authenticated, remote attac
7.7HIGH
 CVE-2022-20684
all versions
A vulnerability in Simple Network Management Protocol (SNMP) trap generation for wireless clients of Cisco IOS XE Wireless Control
7.4HIGH
 CVE-2022-20683
all versions
A vulnerability in the Application Visibility and Control (AVC-FNF) feature of Cisco IOS XE Software for Cisco Catalyst 9800 Serie
8.6HIGH
 CVE-2022-20682
all versions
A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Wireless Co
8.6HIGH
 CVE-2022-20681
all versions
A vulnerability in the CLI of Cisco IOS XE Software for Cisco Catalyst 9000 Family Switches and Cisco Catalyst 9000 Family Wireles
7.8HIGH
 CVE-2022-20679
all versions
A vulnerability in the IPSec decryption routine of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause
6.8MEDIUM
 CVE-2022-20678
all versions
A vulnerability in the AppNav-XE feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affe
8.6HIGH
 CVE-2022-20676
all versions
A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS XE Software could allow an authenticated, local attack
5.1MEDIUM
 CVE-2021-1529
>= 16.12 and <= 17.0
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary comma
7.8HIGH
 CVE-2021-34770
all versions
A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software fo
10.0CRITICAL
 CVE-2021-34769
all versions
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE So
8.6HIGH
 CVE-2021-34768
all versions
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE So
8.6HIGH
 CVE-2021-34767
all versions
A vulnerability in IPv6 traffic processing of Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9000 Family Wireless Co
7.4HIGH
 CVE-2021-34729
<= 17.3.1a
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software and Cisco IOS XE Software could allow an authenticated, local attacker
6.7MEDIUM
 CVE-2021-34723
all versions
A vulnerability in a specific CLI command that is run on Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker
6.7MEDIUM
 CVE-2021-34714
<= 8.4\(3.115\)
A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software, Cisco IOS Software, Cisco IOS XE Softw
7.4HIGH
 CVE-2021-34705
all versions
A vulnerability in the Voice Telephony Service Provider (VTSP) service of Cisco IOS Software and Cisco IOS XE Software could allow
5.3MEDIUM
 CVE-2021-34703
<= 16.12.3
A vulnerability in the Link Layer Discovery Protocol (LLDP) message parser of Cisco IOS Software and Cisco IOS XE Software could a
6.8MEDIUM
 CVE-2021-34699
all versions
A vulnerability in the TrustSec CLI parser of Cisco IOS and Cisco IOS XE Software could allow an authenticated, remote attacker to
7.7HIGH
 CVE-2021-34697
>= 17.3.1 and < 17.3.3
A vulnerability in the Protection Against Distributed Denial of Service Attacks feature of Cisco IOS XE Software could allow an un
5.8MEDIUM
 CVE-2021-34696
<= 17.3.2
A vulnerability in the access control list (ACL) programming of Cisco ASR 900 and ASR 920 Series Aggregation Services Routers coul
5.8MEDIUM
 CVE-2021-1625
< 17.3.2
A vulnerability in the Zone-Based Policy Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker
5.8MEDIUM
 CVE-2021-1624
<= 17.3.3
A vulnerability in the Rate Limiting Network Address Translation (NAT) feature of Cisco IOS XE Software could allow an unauthentic
8.6HIGH
 CVE-2021-1623
< 17.6.1a
A vulnerability in the Simple Network Management Protocol (SNMP) punt handling function of Cisco cBR-8 Converged Broadband Routers
7.7HIGH
 CVE-2021-1622
< 16.12.1z1
A vulnerability in the Common Open Policy Service (COPS) of Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers coul
8.6HIGH
 CVE-2021-1621
< 17.3.1
A vulnerability in the Layer 2 punt code of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a que
7.4HIGH
 CVE-2021-1620
all versions
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) support for the AutoReconnect feature of Cisco IOS Software and Cis
7.7HIGH
 CVE-2021-1619
all versions
A vulnerability in the authentication, authorization, and accounting (AAA) function of Cisco IOS XE Software could allow an unauth
9.8CRITICAL
 CVE-2021-1616
< 17.6.1
A vulnerability in the H.323 application level gateway (ALG) used by the Network Address Translation (NAT) feature of Cisco IOS XE
4.7MEDIUM
 CVE-2021-1611
< 17.3.1
A vulnerability in Ethernet over GRE (EoGRE) packet processing of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst
8.6HIGH
 CVE-2021-1565
all versions
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE So
8.6HIGH
 CVE-2021-1495
>= 17.1 and < 17.3.3
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote
5.8MEDIUM
 CVE-2021-1381
all versions
A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker with high privileges or an unauthenticated a
6.1MEDIUM
 CVE-2021-1376
all versions
Multiple vulnerabilities in the fast reload feature of Cisco IOS XE Software running on Cisco Catalyst 3850, Cisco Catalyst 9300,
6.7MEDIUM
 CVE-2021-1375
all versions
Multiple vulnerabilities in the fast reload feature of Cisco IOS XE Software running on Cisco Catalyst 3850, Cisco Catalyst 9300,
6.7MEDIUM
 CVE-2021-1374
all versions
A vulnerability in the web-based management interface of Cisco IOS XE Wireless Controller software for the Catalyst 9000 Family of
4.8MEDIUM
 CVE-2021-1373
all versions
A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Wireless Co
8.6HIGH
 CVE-2021-1356
all versions
Multiple vulnerabilities in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privi
4.3MEDIUM
 CVE-2021-1352
all versions
A vulnerability in the DECnet Phase IV and DECnet/OSI protocol processing of Cisco IOS XE Software could allow an unauthenticated,
7.4HIGH
 CVE-2021-1281
all versions
A vulnerability in CLI management in Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the under
5.1MEDIUM
 CVE-2021-1220
all versions
Multiple vulnerabilities in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privi
4.3MEDIUM
 CVE-2021-1454
all versions
Multiple vulnerabilities in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the und
6.0MEDIUM
 CVE-2021-1453
all versions
A vulnerability in the software image verification functionality of Cisco IOS XE Software for the Cisco Catalyst 9000 Family of sw
6.8MEDIUM
 CVE-2021-1451
all versions
A vulnerability in the Easy Virtual Switching System (VSS) feature of Cisco IOS XE Software for Cisco Catalyst 4500 Series Switche
8.1HIGH
 CVE-2021-1446
all versions
A vulnerability in the DNS application layer gateway (ALG) functionality used by Network Address Translation (NAT) in Cisco IOS XE
8.6HIGH
 CVE-2021-1443
all versions
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to execute arbitrary code wit
5.5MEDIUM
 CVE-2021-1442
all versions
A vulnerability in a diagnostic command for the Plug-and-Play (PnP) subsystem of Cisco IOS XE Software could allow an authenticate
7.8HIGH
 CVE-2021-1441
all versions
A vulnerability in the hardware initialization routines of Cisco IOS XE Software for Cisco 1100 Series Industrial Integrated Servi
6.7MEDIUM
 CVE-2021-1436
all versions
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to conduct path traversal
4.4MEDIUM
 CVE-2021-1435
all versions
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to inject arbitrary commands
7.2HIGH
 CVE-2021-1434
all versions
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to overwrite arbitrary fil
4.4MEDIUM
 CVE-2021-1433
all versions
A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to cause a
8.1HIGH
 CVE-2021-1432
all versions
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary comma
7.3HIGH
 CVE-2021-1431
all versions
A vulnerability in the vDaemon process of Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to cause a
7.5HIGH
 CVE-2021-1403
all versions
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-
7.4HIGH
 CVE-2021-1398
all versions
A vulnerability in the boot logic of Cisco IOS XE Software could allow an authenticated, local attacker with level 15 privileges o
6.8MEDIUM
 CVE-2021-1394
all versions
A vulnerability in the ingress traffic manager of Cisco IOS XE Software for Cisco Network Convergence System (NCS) 520 Routers cou
5.3MEDIUM
 CVE-2021-1392
all versions
A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker
7.8HIGH
 CVE-2021-1391
all versions
A vulnerability in the dragonite debugger of Cisco IOS XE Software could allow an authenticated, local attacker to escalate from p
5.1MEDIUM
 CVE-2021-1390
all versions
A vulnerability in one of the diagnostic test CLI commands of Cisco IOS XE Software could allow an authenticated, local attacker t
5.1MEDIUM
 CVE-2021-1385
all versions
A vulnerability in the Cisco IOx application hosting environment of multiple Cisco platforms could allow an authenticated, remote
6.5MEDIUM
 CVE-2021-1384
< 16.6.9
A vulnerability in Cisco IOx application hosting environment of Cisco IOS XE Software could allow an authenticated, remote attacke
6.5MEDIUM
 CVE-2021-1383
all versions
Multiple vulnerabilities in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the und
6.0MEDIUM
 CVE-2021-1382
< 17.3.3
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to inject arbitrary comman
6.0MEDIUM
 CVE-2021-1377
all versions
A vulnerability in Address Resolution Protocol (ARP) management of Cisco IOS Software and Cisco IOS XE Software could allow an una
5.8MEDIUM
 CVE-2021-1236
< 17.4.1
Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthentica
5.3MEDIUM
 CVE-2021-1224
< 17.4.1
Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection
5.8MEDIUM
 CVE-2021-1223
< 17.4.1
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote
7.5HIGH
 CVE-2020-3444
<= 16.12.2r
A vulnerability in the packet filtering features of Cisco SD-WAN Software could allow an unauthenticated, remote attacker to bypas
7.5HIGH
 CVE-2020-3527
>= 16.9.0 and < 16.9.5
A vulnerability in the Polaris kernel of Cisco Catalyst 9200 Series Switches could allow an unauthenticated, remote attacker to cr
8.6HIGH
 CVE-2020-3526
all versions
A vulnerability in the Common Open Policy Service (COPS) engine of Cisco IOS XE Software on Cisco cBR-8 Converged Broadband Router
8.6HIGH
 CVE-2020-3516
< 16.9.6
A vulnerability in the web server authentication of Cisco IOS XE Software could allow an authenticated, remote attacker to crash t
4.3MEDIUM
 CVE-2020-3513
all versions
Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900
6.7MEDIUM
 CVE-2020-3512
all versions
A vulnerability in the PROFINET handler for Link Layer Discovery Protocol (LLDP) messages of Cisco IOS Software and Cisco IOS XE S
7.4HIGH
 CVE-2020-3511
all versions
A vulnerability in the ISDN subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent att
7.4HIGH
 CVE-2020-3510
all versions
A vulnerability in the Umbrella Connector component of Cisco IOS XE Software for Cisco Catalyst 9200 Series Switches could allow a
8.6HIGH
 CVE-2020-3509
all versions
A vulnerability in the DHCP message handler of Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers could allow an un
8.6HIGH
 CVE-2020-3508
all versions
A vulnerability in the IP Address Resolution Protocol (ARP) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation
7.4HIGH
 CVE-2020-3503
all versions
A vulnerability in the file system permissions of Cisco IOS XE Software could allow an authenticated, local attacker to obtain rea
6.0MEDIUM
 CVE-2020-3497
all versions
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE So
7.4HIGH
 CVE-2020-3494
all versions
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE So
7.4HIGH
 CVE-2020-3493
all versions
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE So
7.4HIGH
 CVE-2020-3492
all versions
A vulnerability in the Flexible NetFlow Version 9 packet processor of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireles
8.6HIGH
 CVE-2020-3489
all versions
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE So
7.4HIGH
 CVE-2020-3488
all versions
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE So
7.4HIGH
 CVE-2020-3487
all versions
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE So
6.5MEDIUM
 CVE-2020-3486
all versions
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE So
6.5MEDIUM
 CVE-2020-3480
all versions
Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attack
8.6HIGH
 CVE-2020-3479
all versions
A vulnerability in the implementation of Multiprotocol Border Gateway Protocol (MP-BGP) for the Layer 2 VPN (L2VPN) Ethernet VPN (
6.1MEDIUM
 CVE-2020-3474
all versions
Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker wi
4.3MEDIUM
 CVE-2020-3465
all versions
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a device to reload. The vulner
7.4HIGH
 CVE-2020-3429
all versions
A vulnerability in the WPA2 and WPA3 security implementation of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9
6.5MEDIUM
 CVE-2020-3428
all versions
A vulnerability in the WLAN Local Profiling feature of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Famil
6.5MEDIUM
 CVE-2020-3425
all versions
Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker wi
8.8HIGH
 CVE-2020-3423
all versions
A vulnerability in the implementation of the Lua interpreter that is integrated in Cisco IOS XE Software could allow an authentica
5.1MEDIUM
 CVE-2020-3422
all versions
A vulnerability in the IP Service Level Agreement (SLA) responder feature of Cisco IOS XE Software could allow an unauthenticated,
7.5HIGH
 CVE-2020-3421
all versions
Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attack
8.6HIGH
 CVE-2020-3418
all versions
A vulnerability in Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9800 Series Routers could allow an unauthenticated
4.7MEDIUM
 CVE-2020-3417
all versions
A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker to execute persistent code at boot time and
6.8MEDIUM
 CVE-2020-3416
all versions
Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900
6.7MEDIUM
 CVE-2020-3414
all versions
A vulnerability in the packet processing of Cisco IOS XE Software for Cisco 4461 Integrated Services Routers could allow an unauth
8.6HIGH
 CVE-2020-3409
all versions
A vulnerability in the PROFINET feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent a
7.4HIGH
 CVE-2020-3408
all versions
A vulnerability in the Split DNS feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote at
8.6HIGH
 CVE-2020-3407
all versions
A vulnerability in the RESTCONF and NETCONF-YANG access control list (ACL) function of Cisco IOS XE Software could allow an unauth
8.6HIGH
 CVE-2020-3404
all versions
A vulnerability in the persistent Telnet/Secure Shell (SSH) CLI of Cisco IOS XE Software could allow an authenticated, local attac
7.8HIGH
 CVE-2020-3403
all versions
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to inject a command to the underl
7.8HIGH
 CVE-2020-3400
all versions
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to utilize parts of t
8.8HIGH
 CVE-2020-3399
all versions
A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software fo
8.6HIGH
 CVE-2020-3396
all versions
A vulnerability in the file system on the pluggable USB 3.0 Solid State Drive (SSD) for Cisco IOS XE Software could allow an authe
6.8MEDIUM
 CVE-2020-3393
all versions
A vulnerability in the application-hosting subsystem of Cisco IOS XE Software could allow an authenticated, local attacker to elev
6.0MEDIUM
 CVE-2020-3390
all versions
A vulnerability in Simple Network Management Protocol (SNMP) trap generation for wireless clients of the Cisco IOS XE Wireless Con
7.4HIGH
 CVE-2020-3359
all versions
A vulnerability in the multicast DNS (mDNS) feature of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers c
8.6HIGH
 CVE-2020-3141
all versions
Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker wi
8.8HIGH
 CVE-2019-16009
< 16.1.1
A vulnerability in the web UI of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a
8.8HIGH
 CVE-2020-3235
all versions
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software and Cisco IOS XE Software on Cata
7.7HIGH
 CVE-2020-3232
all versions
A vulnerability in the Simple Network Management Protocol (SNMP) implementation in Cisco ASR 920 Series Aggregation Services Route
7.7HIGH
 CVE-2020-3230
all versions
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) implementation in Cisco IOS Software and Cisco IOS XE Software coul
7.5HIGH
 CVE-2020-3229
all versions
A vulnerability in Role Based Access Control (RBAC) functionality of Cisco IOS XE Web Management Software could allow a Read-Only
8.8HIGH
 CVE-2020-3228
all versions
A vulnerability in Security Group Tag Exchange Protocol (SXP) in Cisco IOS Software, Cisco IOS XE Software, and Cisco NX-OS Softwa
8.6HIGH
 CVE-2020-3227
all versions
A vulnerability in the authorization controls for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could
9.8CRITICAL
 CVE-2020-3226
all versions
A vulnerability in the Session Initiation Protocol (SIP) library of Cisco IOS Software and Cisco IOS XE Software could allow an un
8.6HIGH
 CVE-2020-3225
all versions
Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature of Cisco IOS Software and Cisco IOS
8.6HIGH
 CVE-2020-3224
all versions
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker wi
8.8HIGH
 CVE-2020-3223
all versions
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker wi
4.9MEDIUM
 CVE-2020-3222
all versions
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, adjacent attacke
4.3MEDIUM
 CVE-2020-3221
all versions
A vulnerability in the Flexible NetFlow Version 9 packet processor of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireles
8.6HIGH
 CVE-2020-3220
all versions
A vulnerability in the hardware crypto driver of Cisco IOS XE Software for Cisco 4300 Series Integrated Services Routers and Cisco
6.8MEDIUM
 CVE-2020-3219
all versions
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to inject and execute arbitra
8.8HIGH
 CVE-2020-3218
all versions
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker with administrative privilege
7.2HIGH
 CVE-2020-3217
all versions
A vulnerability in the Topology Discovery Service of Cisco One Platform Kit (onePK) in Cisco IOS Software, Cisco IOS XE Software,
8.8HIGH
 CVE-2020-3215
all versions
A vulnerability in the Virtual Services Container of Cisco IOS XE Software could allow an authenticated, local attacker to gain ro
6.7MEDIUM
 CVE-2020-3214
all versions
A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker to escalate their privileges to a user with
6.7MEDIUM
 CVE-2020-3213
all versions
A vulnerability in the ROMMON of Cisco IOS XE Software could allow an authenticated, local attacker to elevate privileges to those
6.7MEDIUM
 CVE-2020-3212
all versions
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to execute arbitrary commands
7.2HIGH
 CVE-2020-3211
all versions
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to execute arbitrary commands
7.2HIGH
 CVE-2020-3209
all versions
A vulnerability in software image verification in Cisco IOS XE Software could allow an unauthenticated, physical attacker to insta
6.8MEDIUM
 CVE-2020-3207
all versions
A vulnerability in the processing of boot options of specific Cisco IOS XE Software switches could allow an authenticated, local a
6.7MEDIUM
 CVE-2020-3206
all versions
A vulnerability in the handling of IEEE 802.11w Protected Management Frames (PMFs) of Cisco Catalyst 9800 Series Wireless Controll
4.7MEDIUM
 CVE-2020-3204
all versions
A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS Software and Cisco IOS XE Software could allow an auth
6.7MEDIUM
 CVE-2020-3203
all versions
A vulnerability in the locally significant certificate (LSC) provisioning feature of Cisco Catalyst 9800 Series Wireless Controlle
8.6HIGH
 CVE-2020-3201
all versions
A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS Software and Cisco IOS XE Software could allow an auth
6.0MEDIUM
 CVE-2020-3200
all versions
A vulnerability in the Secure Shell (SSH) server code of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated
7.7HIGH
 CVE-2019-16011
>= 16.12 and < 17.2.1r
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to inject arbitrary comman
7.8HIGH
 CVE-2019-1950
<= 16.11
A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, local attacker to gain unauthorized access to an a
8.4HIGH
 CVE-2019-12671
all versions
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to gain shell access on an affect
7.8HIGH
 CVE-2019-12668
>= 16.1.1 and < 16.3.8
A vulnerability in the web framework code of Cisco IOS and Cisco IOS XE Software could allow an authenticated, remote attacker to
4.8MEDIUM
 CVE-2019-12667
>= 16.1.1 and < 16.6.5
A vulnerability in the web framework code of Cisco IOS XE Software could allow an authenticated, remote attacker to conduct a stor
4.8MEDIUM
 CVE-2019-12666
>= 16.4 and < 16.6.5
A vulnerability in the Guest Shell of Cisco IOS XE Software could allow an authenticated, local attacker to perform directory trav
6.7MEDIUM
 CVE-2019-12664
all versions
A vulnerability in the Dialer interface feature for ISDN connections in Cisco IOS XE Software for Cisco 4000 Series Integrated Ser
7.5HIGH
 CVE-2019-12663
all versions
A vulnerability in the Cisco TrustSec (CTS) Protected Access Credential (PAC) provisioning module of Cisco IOS XE Software could a
8.6HIGH
 CVE-2019-12662
all versions
A vulnerability in Cisco NX-OS Software and Cisco IOS XE Software could allow an authenticated, local attacker with valid administ
6.7MEDIUM
 CVE-2019-12661
all versions
A vulnerability in a Virtualization Manager (VMAN) related CLI command of Cisco IOS XE Software could allow an authenticated, loca
6.7MEDIUM
 CVE-2019-12660
>= 16.1.1
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to write values to the underlying
5.5MEDIUM
 CVE-2019-12659
all versions
A vulnerability in the HTTP server code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the HTTP
7.5HIGH
 CVE-2019-12658
all versions
A vulnerability in the filesystem resource management code of Cisco IOS XE Software could allow an unauthenticated, remote attacke
7.5HIGH
 CVE-2019-12657
all versions
A vulnerability in Unified Threat Defense (UTD) in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause
7.5HIGH
 CVE-2019-12654
all versions
A vulnerability in the common Session Initiation Protocol (SIP) library of Cisco IOS and IOS XE Software could allow an unauthenti
7.5HIGH
 CVE-2019-12653
all versions
A vulnerability in the Raw Socket Transport feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to tr
7.5HIGH
 CVE-2019-12650
all versions
Multiple vulnerabilities in the web-based user interface (Web UI) of Cisco IOS XE Software could allow an authenticated, remote at
8.8HIGH
 CVE-2019-12649
all versions
A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an authenticated, local attacker to install
6.7MEDIUM
 CVE-2019-12647
all versions
A vulnerability in the Ident protocol handler of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to
7.5HIGH
 CVE-2019-12646
all versions
A vulnerability in the Network Address Translation (NAT) Session Initiation Protocol (SIP) Application Layer Gateway (ALG) of Cisc
7.5HIGH
 CVE-2019-12643
all versions
A vulnerability in the Cisco REST API virtual service container for Cisco IOS XE Software could allow an unauthenticated, remote a
10.0CRITICAL
 CVE-2019-12624
>= 3.0.xe and <= 3.11.xe
A vulnerability in the web-based management interface of Cisco IOS XE New Generation Wireless Controller (NGWC) could allow an una
8.8HIGH
 CVE-2019-1904
all versions
A vulnerability in the web-based UI (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a
8.8HIGH
 CVE-2019-1862
all versions
A vulnerability in the web-based user interface (Web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to
7.2HIGH
 CVE-2019-1649
< 16.12.1
A vulnerability in the logic that handles access control to one of the hardware components in Cisco's proprietary Secure Boot impl
6.7MEDIUM
 CVE-2019-1762
all versions
A vulnerability in the Secure Storage feature of Cisco IOS and IOS XE Software could allow an authenticated, local attacker to acc
4.4MEDIUM
 CVE-2019-1761
all versions
A vulnerability in the Hot Standby Router Protocol (HSRP) subsystem of Cisco IOS and IOS XE Software could allow an unauthenticate
4.3MEDIUM
 CVE-2019-1760
all versions
A vulnerability in Performance Routing Version 3 (PfRv3) of Cisco IOS XE Software could allow an unauthenticated, remote attacker
6.8MEDIUM
 CVE-2019-1759
all versions
A vulnerability in access control list (ACL) functionality of the Gigabit Ethernet Management interface of Cisco IOS XE Software c
5.3MEDIUM
 CVE-2019-1757
all versions
A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attac
5.9MEDIUM
 CVE-2019-1756
all versions
A vulnerability in Cisco IOS XE Software could allow an authenticated, remote attacker to execute commands on the underlying Linux
7.2HIGH
 CVE-2019-1755
all versions
A vulnerability in the Web Services Management Agent (WSMA) function of Cisco IOS XE Software could allow an authenticated, remote
6.5MEDIUM
 CVE-2019-1754
all versions
A vulnerability in the authorization subsystem of Cisco IOS XE Software could allow an authenticated but unprivileged (level 1), r
8.8HIGH
 CVE-2019-1753
all versions
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated but unprivileged (level 1), remote attacker to
8.8HIGH
 CVE-2019-1752
all versions
A vulnerability in the ISDN functions of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attac
7.5HIGH
 CVE-2019-1750
all versions
A vulnerability in the Easy Virtual Switching System (VSS) of Cisco IOS XE Software on Catalyst 4500 Series Switches could allow a
7.4HIGH
 CVE-2019-1749
all versions
A vulnerability in the ingress traffic validation of Cisco IOS XE Software for Cisco Aggregation Services Router (ASR) 900 Route S
7.4HIGH
 CVE-2019-1748
all versions
A vulnerability in the Cisco Network Plug-and-Play (PnP) agent of Cisco IOS Software and Cisco IOS XE Software could allow an unau
7.4HIGH
 CVE-2019-1747
all versions
A vulnerability in the implementation of the Short Message Service (SMS) handling functionality of Cisco IOS Software and Cisco IO
8.6HIGH
 CVE-2019-1746
all versions
A vulnerability in the Cluster Management Protocol (CMP) processing code in Cisco IOS Software and Cisco IOS XE Software could all
7.4HIGH
 CVE-2019-1745
all versions
A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker to inject arbitrary commands that are execut
7.8HIGH
 CVE-2019-1743
all versions
A vulnerability in the web UI framework of Cisco IOS XE Software could allow an authenticated, remote attacker to make unauthorize
8.8HIGH
 CVE-2019-1742
all versions
A vulnerability in the web UI of Cisco IOS XE Software could allow an unauthenticated, remote attacker to access sensitive configu
5.3MEDIUM
 CVE-2019-1741
all versions
A vulnerability in the Cisco Encrypted Traffic Analytics (ETA) feature of Cisco IOS XE Software could allow an unauthenticated, re
7.5HIGH
 CVE-2019-1740
all versions
A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could
8.6HIGH
 CVE-2019-1739
all versions
A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could
7.5HIGH
 CVE-2019-1738
all versions
A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could
7.5HIGH
 CVE-2019-1737
all versions
A vulnerability in the processing of IP Service Level Agreement (SLA) packets by Cisco IOS Software and Cisco IOS XE software coul
8.6HIGH
 CVE-2018-0282
all versions
A vulnerability in the TCP socket code of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause a
6.8MEDIUM
 CVE-2018-15374
all versions
A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an authenticated, local attacker to install
6.7MEDIUM
 CVE-2018-15373
all versions
A vulnerability in the implementation of Cisco Discovery Protocol functionality in Cisco IOS Software and Cisco IOS XE Software co
7.4HIGH
 CVE-2018-15372
all versions
A vulnerability in the MACsec Key Agreement (MKA) using Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) func
8.1HIGH
 CVE-2018-15371
all versions
A vulnerability in the shell access request mechanism of Cisco IOS XE Software could allow an authenticated, local attacker to byp
6.7MEDIUM
 CVE-2018-15369
all versions
A vulnerability in the TACACS+ client subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, re
6.8MEDIUM
 CVE-2018-15368
all versions
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to the unde
6.7MEDIUM
 CVE-2018-0485
all versions
A vulnerability in the SM-1T3/E3 firmware on Cisco Second Generation Integrated Services Routers (ISR G2) and the Cisco 4451-X Int
8.6HIGH
 CVE-2018-0481
all versions
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to execute commands on the
6.7MEDIUM
 CVE-2018-0480
all versions
A vulnerability in the errdisable per VLAN feature of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to c
6.1MEDIUM
 CVE-2018-0477
all versions
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to execute commands on the
6.7MEDIUM
 CVE-2018-0476
all versions
A vulnerability in the Network Address Translation (NAT) Session Initiation Protocol (SIP) Application Layer Gateway (ALG) of Cisc
5.9MEDIUM
 CVE-2018-0475
all versions
A vulnerability in the implementation of the cluster feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauth
7.4HIGH
 CVE-2018-0472
all versions
A vulnerability in the IPsec driver code of multiple Cisco IOS XE Software platforms and the Cisco ASA 5500-X Series Adaptive Secu
8.6HIGH
 CVE-2018-0471
all versions
A vulnerability in the Cisco Discovery Protocol (CDP) module of Cisco IOS XE Software Releases 16.6.1 and 16.6.2 could allow an un
7.4HIGH
 CVE-2018-0470
all versions
A vulnerability in the web framework of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a buffer ov
8.6HIGH
 CVE-2018-0469
all versions
A vulnerability in the web user interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an aff
6.8MEDIUM
 CVE-2018-0467
all versions
A vulnerability in the IPv6 processing code of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to ca
8.6HIGH
 CVE-2018-0466
all versions
A vulnerability in the Open Shortest Path First version 3 (OSPFv3) implementation in Cisco IOS and IOS XE Software could allow an
6.5MEDIUM
 CVE-2018-0197
all versions
A vulnerability in the VLAN Trunking Protocol (VTP) subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unaut
6.5MEDIUM
 CVE-2018-0131
all versions
A vulnerability in the implementation of RSA-encrypted nonces in Cisco IOS Software and Cisco IOS XE Software could allow an unaut
5.9MEDIUM
 CVE-2018-0315
all versions
A vulnerability in the authentication, authorization, and accounting (AAA) security services of Cisco IOS XE Software could allow
9.8CRITICAL
 CVE-2018-0257
>= 3.18 and <= 3.18.4
A vulnerability in Cisco IOS XE Software running on Cisco cBR Series Converged Broadband Routers could allow an unauthenticated, a
4.3MEDIUM
 CVE-2018-0194
< 16.3.1
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to inject arbitra
7.8HIGH
 CVE-2018-0196
all versions
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to
4.9MEDIUM
 CVE-2018-0195
< 16.2.2
A vulnerability in the Cisco IOS XE Software REST API could allow an authenticated, remote attacker to bypass API authorization ch
8.8HIGH
 CVE-2018-0193
< 16.3.1
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to inject arbitra
7.8HIGH
 CVE-2018-0190
< 16.3.6
Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote
6.1MEDIUM
 CVE-2018-0189
< 15.5\(3\)s5
A vulnerability in the Forwarding Information Base (FIB) code of Cisco IOS Software and Cisco IOS XE Software could allow an unaut
5.3MEDIUM
 CVE-2018-0188
< 16.3.6
Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote
6.1MEDIUM
 CVE-2018-0186
< 16.3.6
Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote
6.1MEDIUM
 CVE-2018-0185
< 16.3.1
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to inject arbitra
7.8HIGH
 CVE-2018-0184
>= 16.3 and < 16.3.6
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to the unde
6.7MEDIUM
 CVE-2018-0183
< 3.13.2as
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to the unde
6.7MEDIUM
 CVE-2018-0182
< 16.3.1
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to inject arbitra
7.8HIGH
 CVE-2018-0177
all versions
A vulnerability in the IP Version 4 (IPv4) processing code of Cisco IOS XE Software running on Cisco Catalyst 3850 and Cisco Catal
7.5HIGH
 CVE-2018-0176
all versions
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to
7.8HIGH
 CVE-2018-0175
<= 15.2\(4a\)ea5
Format String vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, an
8.0HIGH
 CVE-2018-0174
<= 15.2\(4a\)ea5
A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco IOS XE Software could allow an u
8.6HIGH
 CVE-2018-0173
<= 15.2\(6\)e0a
A vulnerability in the Cisco IOS Software and Cisco IOS XE Software function that restores encapsulated option 82 information in D
8.6HIGH
 CVE-2018-0172
all versions
A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco IOS XE Software could allow an u
8.6HIGH
 CVE-2018-0170
all versions
A vulnerability in the Cisco Umbrella Integration feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker
7.5HIGH
 CVE-2018-0167
<= 15.6.3m1
Multiple Buffer Overflow vulnerabilities in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE
8.8HIGH
 CVE-2018-0165
all versions
A vulnerability in the Internet Group Management Protocol (IGMP) packet-processing functionality of Cisco IOS XE Software could al
7.4HIGH
 CVE-2018-0164
all versions
A vulnerability in the Switch Integrated Security Features of Cisco IOS XE Software could allow an unauthenticated, remote attacke
8.6HIGH
 CVE-2018-0160
all versions
A vulnerability in Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE Software could allow an authenticated, remo
6.3MEDIUM
 CVE-2018-0159
all versions
A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS
7.5HIGH
 CVE-2018-0158
all versions
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS Software and Cisco IOS XE Software could allow
8.6HIGH
 CVE-2018-0157
all versions
A vulnerability in the Zone-Based Firewall code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause
8.6HIGH
 CVE-2018-0156
all versions
A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remot
7.5HIGH
 CVE-2018-0155
all versions
A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and
8.6HIGH
 CVE-2018-0152
all versions
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to
8.8HIGH
 CVE-2018-0151
all versions
A vulnerability in the quality of service (QoS) subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthent
9.8CRITICAL
 CVE-2018-0150
all versions
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, remote attacker to log in to a device running an affected
9.8CRITICAL
 CVE-2017-12319
< 16.3
A vulnerability in the Border Gateway Protocol (BGP) over an Ethernet Virtual Private Network (EVPN) for Cisco IOS XE Software cou
5.9MEDIUM
 CVE-2018-0123
all versions
A Path Traversal vulnerability in the diagnostic shell for Cisco IOS and IOS XE Software could allow an authenticated, local attac
5.5MEDIUM
 CVE-2017-12272
all versions
A vulnerability in the web framework code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cr
6.1MEDIUM
 CVE-2017-12239
all versions
A vulnerability in motherboard console ports of line cards for Cisco ASR 1000 Series Aggregation Services Routers and Cisco cBR-8
6.8MEDIUM
 CVE-2017-12237
>= 3.5.0e and <= 16.5
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS 15.0 through 15.6 and Cisco IOS XE 3.5 through
7.5HIGH
 CVE-2017-12236
all versions
A vulnerability in the implementation of the Locator/ID Separation Protocol (LISP) in Cisco IOS XE 3.2 through 16.5 could allow an
9.8CRITICAL
 CVE-2017-12230
all versions
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE 16.2 could allow an authenticated, remote attacker to ele
8.8HIGH
 CVE-2017-12229
all versions
A vulnerability in the REST API of the web-based user interface (web UI) of Cisco IOS XE 3.1 through 16.5 could allow an unauthent
9.8CRITICAL
 CVE-2017-12228
<= 15.4\(3\)s
A vulnerability in the Cisco Network Plug and Play application of Cisco IOS 12.4 through 15.6 and Cisco IOS XE 3.3 through 16.4 co
5.9MEDIUM
 CVE-2017-12226
all versions
A vulnerability in the web-based Wireless Controller GUI of Cisco IOS XE Software for Cisco 5760 Wireless LAN Controllers, Cisco C
8.8HIGH
 CVE-2017-12222
all versions
A vulnerability in the wireless controller manager of Cisco IOS XE could allow an unauthenticated, adjacent attacker to cause a re
6.5MEDIUM
 CVE-2017-6796
all versions
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could
6.7MEDIUM
 CVE-2017-6795
all versions
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could
4.4MEDIUM
 CVE-2017-6627
all versions
A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14 through 3.18 could allow an unauthent
7.5HIGH
 CVE-2017-12213
all versions
A vulnerability in the dynamic access control list (ACL) feature of Cisco IOS XE Software running on Cisco Catalyst 4000 Series Sw
4.3MEDIUM
 CVE-2017-12211
all versions
A vulnerability in the IPv6 Simple Network Management Protocol (SNMP) code of Cisco IOS and Cisco IOS XE Software could allow an a
5.3MEDIUM
 CVE-2017-6770
all versions
Cisco IOS 12.0 through 15.6, Adaptive Security Appliance (ASA) Software 7.0.1 through 9.7.1.2, NX-OS 4.0 through 12.0, and IOS XE
4.2MEDIUM
 CVE-2017-6665
all versions
A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated
6.5MEDIUM
 CVE-2017-6664
all versions
A vulnerability in the Autonomic Networking feature of Cisco IOS XE Software could allow an unauthenticated, remote, autonomic nod
7.5HIGH
 CVE-2017-6663
all versions
A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated
6.5MEDIUM
 CVE-2017-6743
>= 2.2.0 and <= 3.17
The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that co
8.8HIGH
 CVE-2017-6742
>= 2.2.0 and <= 3.17
A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected syst
8.8HIGH
 CVE-2017-6741
all versions
A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected syst
8.8HIGH
 CVE-2017-6740
>= 2.2.0 and <= 3.17
The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that co
8.8HIGH
 CVE-2017-6739
>= 2.2.0 and <= 3.17.0
A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected syst
8.8HIGH
 CVE-2017-6738
>= 2.2.0 and <= 3.17.0
The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that co
8.8HIGH
 CVE-2017-6737
>= 2.2.0 and <= 3.17.0
A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected syst
8.8HIGH
 CVE-2017-6736
>= 2.2.0 and <= 3.17
The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that co
8.8HIGH
 CVE-2017-6615
all versions
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE 3.16 could allow an authenticated, remo
6.3MEDIUM
 CVE-2017-3863
all versions
Multiple vulnerabilities in the EnergyWise module of Cisco IOS (12.2 and 15.0 through 15.6) and Cisco IOS XE (3.2 through 3.18) co
8.6HIGH
 CVE-2017-3862
all versions
Multiple vulnerabilities in the EnergyWise module of Cisco IOS (12.2 and 15.0 through 15.6) and Cisco IOS XE (3.2 through 3.18) co
8.6HIGH
 CVE-2017-3861
all versions
Multiple vulnerabilities in the EnergyWise module of Cisco IOS (12.2 and 15.0 through 15.6) and Cisco IOS XE (3.2 through 3.18) co
8.6HIGH
 CVE-2017-3860
all versions
Multiple vulnerabilities in the EnergyWise module of Cisco IOS (12.2 and 15.0 through 15.6) and Cisco IOS XE (3.2 through 3.18) co
8.6HIGH
 CVE-2017-6606
all versions
A vulnerability in a startup script of Cisco IOS XE Software could allow an unauthenticated attacker with physical access to the t
6.4MEDIUM
 CVE-2017-3864
>= 3.3 and <= 3.7
A vulnerability in the DHCP client implementation of Cisco IOS (12.2, 12.4, and 15.0 through 15.6) and Cisco IOS XE (3.3 through 3
8.6HIGH
 CVE-2017-3859
all versions
A vulnerability in the DHCP code for the Zero Touch Provisioning feature of Cisco ASR 920 Series Aggregation Services Routers coul
7.5HIGH
 CVE-2017-3858
all versions
A vulnerability in the web framework of Cisco IOS XE Software could allow an authenticated, remote attacker to inject arbitrary co
8.8HIGH
 CVE-2017-3857
>= 3.1.0 and <= 3.18.0
A vulnerability in the Layer 2 Tunneling Protocol (L2TP) parsing function of Cisco IOS (12.0 through 12.4 and 15.0 through 15.6) a
7.5HIGH
 CVE-2017-3856
all versions
A vulnerability in the web user interface of Cisco IOS XE 3.1 through 3.17 could allow an unauthenticated, remote attacker to caus
7.5HIGH
 CVE-2017-3850
all versions
A vulnerability in the Autonomic Networking Infrastructure (ANI) feature of Cisco IOS Software (15.4 through 15.6) and Cisco IOS X
5.9MEDIUM
 CVE-2017-3849
all versions
A vulnerability in the Autonomic Networking Infrastructure (ANI) registrar feature of Cisco IOS Software (possibly 15.2 through 15
7.4HIGH
 CVE-2017-3881
>= 3.2sg and <= 3.9e
A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow
9.8CRITICAL
 CVE-2017-3824
all versions
A vulnerability in the handling of list headers in Cisco cBR Series Converged Broadband Routers could allow an unauthenticated, re
6.8MEDIUM
 CVE-2017-3820
all versions
A vulnerability in Simple Network Management Protocol (SNMP) functions of Cisco ASR 1000 Series Aggregation Services Routers runni
6.5MEDIUM
 CVE-2016-6450
all versions
A vulnerability in the package unbundle utility of Cisco IOS XE Software could allow an authenticated, local attacker to gain writ
2.5LOW
 CVE-2016-6441
all versions
A vulnerability in the Transaction Language 1 (TL1) code of Cisco ASR 900 Series routers could allow an unauthenticated, remote at
9.8CRITICAL
 CVE-2016-6438
all versions
A vulnerability in Cisco IOS XE Software running on Cisco cBR-8 Converged Broadband Routers could allow an unauthenticated, remote
5.9MEDIUM
 CVE-2016-6393
>= 2.1.0 and <= 3.18.0
The AAA service in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 2.1 through 3.18 and 16.2 allows remote attackers
7.5HIGH
 CVE-2016-6385
all versions
Memory leak in the Smart Install client implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.2 through 3.8 allows r
7.5HIGH
 CVE-2016-6380
all versions
The DNS forwarder in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.15 allows remote attackers to obta
8.1HIGH
 CVE-2016-6379
all versions
Cisco IOS 12.2 and IOS XE 3.14 through 3.16 and 16.1 allow remote attackers to cause a denial of service (device reload) via craft
7.5HIGH
 CVE-2016-6378
all versions
Cisco IOS XE 3.1 through 3.17 and 16.1 through 16.2 allows remote attackers to cause a denial of service (device reload) via craft
7.5HIGH
 CVE-2016-6392
all versions
Cisco IOS 12.2 and 15.0 through 15.3 and IOS XE 3.1 through 3.9 allow remote attackers to cause a denial of service (device restar
7.5HIGH
 CVE-2016-6386
all versions
Cisco IOS XE 3.1 through 3.17 and 16.1 on 64-bit platforms allows remote attackers to cause a denial of service (data-structure co
7.5HIGH
 CVE-2016-6384
>= 3.1 and <= 3.17
Cisco IOS 12.2 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.17 and 16.2 allow remote attackers to cause a denial of
7.5HIGH
 CVE-2016-6382
all versions
Cisco IOS 15.2 through 15.6 and IOS XE 3.6 through 3.17 and 16.1 allow remote attackers to cause a denial of service (device resta
7.5HIGH
 CVE-2016-6381
all versions
Cisco IOS 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.18 and 16.1 allow remote attackers to cause a denial of service (mem
7.5HIGH
 CVE-2014-2146
<= 15.4\(3\)s
The Zone-Based Firewall (ZBFW) functionality in Cisco IOS, possibly 15.4 and earlier, and IOS XE, possibly 3.13 and earlier, misha
6.5MEDIUM
 CVE-2016-6415
<= 3.18s
The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x
7.5HIGH
 CVE-2016-1459
all versions
Cisco IOS 12.4 and 15.0 through 15.5 and IOS XE 3.13 through 3.17 allow remote authenticated users to cause a denial of service (d
5.3MEDIUM
 CVE-2016-1428
all versions
Double free vulnerability in Cisco IOS XE 3.15S, 3.16S, and 3.17S allows remote authenticated users to cause a denial of service (
6.5MEDIUM
 CVE-2016-1432
all versions
Cisco IOS XE 3.15S and 3.16S on cBR-8 Converged Broadband Router devices allows remote authenticated users to cause a denial of se
6.5MEDIUM
 CVE-2016-1409
all versions
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.17S, IOS XR 2.0.0 through 5.3.
7.5HIGH
 CVE-2015-6360
all versions
The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted f
7.5HIGH
 CVE-2016-1384
all versions
The NTP implementation in Cisco IOS 15.1 and 15.5 and IOS XE 3.2 through 3.17 allows remote attackers to modify the system time vi
7.5HIGH
 CVE-2016-1350
all versions
Cisco IOS 15.3 and 15.4, Cisco IOS XE 3.8 through 3.11, and Cisco Unified Communications Manager allow remote attackers to cause a
7.5HIGH
 CVE-2016-1349
all versions
The Smart Install client implementation in Cisco IOS 12.2, 15.0, and 15.2 and IOS XE 3.2 through 3.7 allows remote attackers to ca
7.5HIGH
 CVE-2016-1348
all versions
Cisco IOS 15.0 through 15.5 and IOS XE 3.3 through 3.16 allow remote attackers to cause a denial of service (device reload) via a
7.5HIGH
 CVE-2016-1344
all versions
The IKEv2 implementation in Cisco IOS 15.0 through 15.6 and IOS XE 3.3 through 3.17 allows remote attackers to cause a denial of s
5.9MEDIUM
 CVE-2015-6431
all versions
Cisco IOS XE 16.1.1 allows remote attackers to cause a denial of service (device reload) via a packet with the 00-00-00-00-00-00 s
6.5MEDIUM
 CVE-2015-6429
all versions
The IKEv1 state machine in Cisco IOS 15.4 through 15.6 and IOS XE 3.15 through 3.17 allows remote attackers to cause a denial of s
 CVE-2015-6383
all versions
Cisco IOS XE 15.4(3)S on ASR 1000 devices improperly loads software packages, which allows local users to bypass license restricti
 CVE-2015-6280
all versions
The SSHv2 functionality in Cisco IOS 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.6E before 3.6.3E, 3.7E before 3.7.1E, 3.10S before 3.
 CVE-2015-6279
all versions
The IPv6 snooping functionality in the first-hop security subsystem in Cisco IOS 12.2, 15.0, 15.1, 15.2, 15.3, 15.4, and 15.5 and
 CVE-2015-6278
all versions
The IPv6 snooping functionality in the first-hop security subsystem in Cisco IOS 12.2, 15.0, 15.1, 15.2, 15.3, 15.4, and 15.5 and
 CVE-2015-6282
all versions
Cisco IOS XE 2.x and 3.x before 3.10.6S, 3.11.xS through 3.13.xS before 3.13.3S, and 3.14.xS through 3.15.xS before 3.15.1S allows
 CVE-2015-6294
all versions
Cisco IOS 15.2(3)E and earlier and IOS XE 3.6(2)E and earlier allow remote attackers to cause a denial of service (functionality l
 CVE-2015-6272
all versions
Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attacker
 CVE-2015-6271
all versions
Cisco IOS XE 2.1.0 through 2.4.3 and 2.5.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attacker
 CVE-2015-6270
all versions
Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor cr
 CVE-2015-6269
all versions
Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor cr
 CVE-2015-6273
all versions
Cisco IOS XE before 3.1.2S on ASR 1000 devices mishandles the automatic setup of Virtual Fragment Reassembly (VFR) by certain fire
 CVE-2015-6268
all versions
Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor cr
 CVE-2015-6267
all versions
Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor cr
 CVE-2015-4291
all versions
Cisco IOS XE 2.x before 2.4.3 and 2.5.x before 2.5.1 on ASR 1000 devices allows remote attackers to cause a denial of service (Emb
 CVE-2015-4293
all versions
The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (CPU c
 CVE-2015-0681
all versions
The TFTP server in Cisco IOS 12.2(44)SQ1, 12.2(33)XN1, 12.4(25e)JAM1, 12.4(25e)JAO5m, 12.4(23)JY, 15.0(2)ED1, 15.0(2)EY3, 15.1(3)S
 CVE-2015-4243
all versions
The PPPoE establishment implementation in Cisco IOS XE 3.5.0S on ASR 1000 devices allows remote attackers to cause a denial of ser
 CVE-2015-0710
all versions
The Overlay Transport Virtualization (OTV) implementation in Cisco IOS XE 3.10S allows remote attackers to cause a denial of servi
 CVE-2015-0709
all versions
Cisco IOS 15.5S and IOS XE allow remote authenticated users to cause a denial of service (device crash) by leveraging knowledge of
 CVE-2015-0708
all versions
Cisco IOS 15.4S, 15.4SN, and 15.5S and IOS XE 3.13S and 3.14S allow remote attackers to cause a denial of service (device crash) b
 CVE-2015-0688
all versions
Cisco IOS XE 3.10.2S on an ASR 1000 device with an Embedded Services Processor (ESP) module, when NAT is enabled, allows remote at
 CVE-2015-0685
<= 3.7s.4
Cisco IOS XE before 3.7.5S on ASR 1000 devices does not properly handle route adjacencies, which allows remote attackers to cause
 CVE-2015-0650
all versions
The Service Discovery Gateway (aka mDNS Gateway) in Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 3.9.xS and 3
 CVE-2015-0646
all versions
Memory leak in the TCP input module in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS
 CVE-2015-0645
all versions
The Layer 4 Redirect (L4R) feature in Cisco IOS XE 2.x and 3.x before 3.10.4S, 3.11 before 3.11.3S, 3.12 before 3.12.2S, 3.13 befo
 CVE-2015-0644
all versions
AppNav in Cisco IOS XE 3.8 through 3.10 before 3.10.3S, 3.11 before 3.11.3S, 3.12 before 3.12.1S, 3.13 before 3.13.0S, 3.14 before
 CVE-2015-0643
all versions
Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 2.5.x, 2.6.x, 3.1.xS through 3.12.xS before 3.12.3S, 3.2.xE thro
 CVE-2015-0642
all versions
Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 2.5.x, 2.6.x, 3.1.xS through 3.12.xS before 3.12.3S, 3.2.xE thro
 CVE-2015-0641
all versions
Cisco IOS XE 2.x and 3.x before 3.9.0S, 3.10 before 3.10.0S, 3.11 before 3.11.0S, 3.12 before 3.12.0S, 3.13 before 3.13.0S, 3.14 b
 CVE-2015-0640
all versions
The high-speed logging (HSL) feature in Cisco IOS XE 2.x and 3.x before 3.10.4S, 3.11 before 3.11.3S, 3.12 before 3.12.1S, 3.13 be
 CVE-2015-0639
all versions
The Common Flow Table (CFT) feature in Cisco IOS XE 3.6 and 3.7 before 3.7.1S, 3.8 before 3.8.0S, 3.9 before 3.9.0S, 3.10 before 3
 CVE-2015-0637
all versions
The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.x
 CVE-2015-0636
all versions
The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.x
 CVE-2015-0635
all versions
The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.x
 CVE-2015-0598
all versions
The RADIUS implementation in Cisco IOS and IOS XE allows remote attackers to cause a denial of service (device reload) via crafted
 CVE-2015-0632
all versions
Race condition in the Neighbor Discovery (ND) protocol implementation in Cisco IOS and IOS XE allows remote attackers to cause a d
 CVE-2014-7990
<= 3.5e
Cisco IOS XE 3.5E and earlier on WS-C3850, WS-C3860, and AIR-CT5760 devices does not properly parse the "request system shell" cha
 CVE-2014-3409
<= 3.13s
The Ethernet Connectivity Fault Management (CFM) handling feature in Cisco IOS 12.2(33)SRE9a and earlier and IOS XE 3.13S and earl
 CVE-2014-3405
all versions
Cisco IOS XE enables the IPv6 Routing Protocol for Low-Power and Lossy Networks (aka RPL) on both the Autonomic Control Plane (ACP
 CVE-2014-3404
all versions
The Autonomic Networking Infrastructure (ANI) component in Cisco IOS XE does not properly validate certificates, which allows remo
 CVE-2014-3403
all versions
The Autonomic Networking Infrastructure (ANI) component in Cisco IOS XE does not properly validate certificates, which allows remo
 CVE-2014-3360
all versions
Cisco IOS 12.4 and 15.0 through 15.4 and IOS XE 3.1.xS, 3.2.xS, 3.3.xS, 3.4.xS, 3.5.xS, 3.6.xS, and 3.7.xS before 3.7.6S; 3.8.xS,
 CVE-2014-3359
all versions
Memory leak in Cisco IOS 15.1 through 15.4 and IOS XE 3.4.xS, 3.5.xS, 3.6.xS, and 3.7.xS before 3.7.6S; 3.8.xS, 3.9.xS, and 3.10.x
 CVE-2014-3358
all versions
Memory leak in Cisco IOS 15.0, 15.1, 15.2, and 15.4 and IOS XE 3.3.xSE before 3.3.2SE, 3.3.xXO before 3.3.1XO, 3.5.xE before 3.5.2
 CVE-2014-3357
all versions
Cisco IOS 15.0, 15.1, 15.2, and 15.4 and IOS XE 3.3.xSE before 3.3.2SE, 3.3.xXO before 3.3.1XO, 3.5.xE before 3.5.2E, and 3.11.xS
 CVE-2014-3356
all versions
The metadata flow feature in Cisco IOS 15.1 through 15.3 and IOS XE 3.3.xXO before 3.3.1XO, 3.6.xS and 3.7.xS before 3.7.6S, and 3
 CVE-2014-3355
all versions
The metadata flow feature in Cisco IOS 15.1 through 15.3 and IOS XE 3.3.xXO before 3.3.1XO, 3.6.xS and 3.7.xS before 3.7.6S, and 3
 CVE-2014-3354
all versions
Cisco IOS 12.0, 12.2, 12.4, 15.0, 15.1, 15.2, and 15.3 and IOS XE 2.x and 3.x before 3.7.4S; 3.2.xSE and 3.3.xSE before 3.3.2SE; 3
 CVE-2014-3327
all versions
The EnergyWise module in Cisco IOS 12.2, 15.0, 15.1, 15.2, and 15.4 and IOS XE 3.2.xXO, 3.3.xSG, 3.4.xSG, and 3.5.xE before 3.5.3E
 CVE-2014-3309
all versions
The NTP implementation in Cisco IOS and IOS XE does not properly support use of the access-group command for a "deny all" configur
 CVE-2014-3290
all versions
The mDNS implementation in Cisco IOS XE 3.12S does not properly interact with autonomic networking, which allows remote attackers
 CVE-2014-3284
all versions
Cisco IOS XE on ASR1000 devices, when PPPoE termination is enabled, allows remote attackers to cause a denial of service (device r
 CVE-2014-3269
all versions
The SNMP module in Cisco IOS XE 3.5E allows remote authenticated users to cause a denial of service (device reload) by polling fre
 CVE-2014-3262
all versions
The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.3(3)S and earlier and IOS XE does not properly validate p
 CVE-2014-2183
<= 3.10.2s
The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of s
 CVE-2012-5723
<= 3.7s\(.1\)
Cisco ASR 1000 devices with software before 3.8S, when BDI routing is enabled, allow remote attackers to cause a denial of service
 CVE-2014-2143
all versions
The IKE implementation in Cisco IOS 15.4(1)T and earlier and IOS XE allows remote attackers to cause a denial of service (security
 CVE-2014-2113
all versions
Cisco IOS 15.1 through 15.3 and IOS XE 3.3 and 3.5 before 3.5.2E; 3.7 before 3.7.5S; and 3.8, 3.9, and 3.10 before 3.10.2S allow r
 CVE-2014-2108
all versions
Cisco IOS 12.2 and 15.0 through 15.3 and IOS XE 3.2 through 3.7 before 3.7.5S and 3.8 through 3.10 before 3.10.1S allow remote att
 CVE-2014-2106
all versions
Cisco IOS 15.3M before 15.3(3)M2 and IOS XE 3.10.xS before 3.10.2S allow remote attackers to cause a denial of service (device rel
 CVE-2013-6981
<= 3.7s\(.1\)
Cisco IOS XE 3.7S(.1) and earlier allows remote attackers to cause a denial of service (Packet Processor crash) via fragmented MPL
 CVE-2013-6979
all versions
The VTY authentication implementation in Cisco IOS XE 03.02.xxSE and 03.03.xxSE incorrectly relies on the Linux-IOS internal-netwo
 CVE-2013-6705
all versions
The IP Device Tracking (IPDT) feature in Cisco IOS and IOS XE allows remote attackers to cause a denial of service (IPDT AVL corru
 CVE-2013-6704
all versions
Cisco IOS XE does not properly manage memory for TFTP UDP flows, which allows remote attackers to cause a denial of service (memor
 CVE-2013-6706
all versions
The Cisco Express Forwarding processing module in Cisco IOS XE allows remote attackers to cause a denial of service (device reload
 CVE-2013-6692
<= 3.8s\(.2\)
Cisco IOS XE 3.8S(.2) and earlier does not properly use a DHCP pool during assignment of an IP address, which allows remote authen
 CVE-2013-5547
all versions
Cisco IOS XE 3.9 before 3.9.2S on 1000 ASR devices allows remote attackers to cause a denial of service (device reload) by sending
 CVE-2013-5546
all versions
The TCP reassembly feature in Cisco IOS XE 3.7 before 3.7.3S and 3.8 before 3.8.1S on 1000 ASR devices allows remote attackers to
 CVE-2013-5545
all versions
The PPTP ALG implementation in Cisco IOS XE 3.9 before 3.9.2S on 1000 ASR devices allows remote attackers to cause a denial of ser
 CVE-2013-5543
all versions
Cisco IOS XE 3.4 before 3.4.2S and 3.5 before 3.5.1S on 1000 ASR devices allows remote attackers to cause a denial of service (dev
 CVE-2013-5527
all versions
The OSPF functionality in Cisco IOS and IOS XE allows remote attackers to cause a denial of service (device reload) via crafted op
 CVE-2013-5478
all versions
Cisco IOS 15.0 through 15.3 and IOS XE 3.2 through 3.8, when a VRF interface exists, allows remote attackers to cause a denial of
 CVE-2013-5475
all versions
Cisco IOS 12.2 through 12.4 and 15.0 through 15.3, and IOS XE 2.1 through 3.9, allows remote attackers to cause a denial of servic
 CVE-2013-5473
all versions
Memory leak in Cisco IOS 12.2, 15.1, and 15.2; IOS XE 3.4.2S through 3.4.5S; and IOS XE 3.6.xS before 3.6.1S allows remote attacke
 CVE-2013-5472
all versions
The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.1, and IOS XE 2.1 through 3.3, does not properly handle
 CVE-2013-0149
all versions
The OSPF implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.3, IOS-XE 2.x through 3.9.xS, ASA and PIX 7.x through 9
 CVE-2013-2779
all versions
Cisco IOS XE 3.4 before 3.4.5S, and 3.5 through 3.7 before 3.7.1S, on 1000 series Aggregation Services Routers (ASR) does not prop
 CVE-2013-1167
all versions
Cisco IOS XE 3.2 through 3.4 before 3.4.2S, and 3.5, on 1000 series Aggregation Services Routers (ASR), when bridge domain interfa
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin