← Back to News Iceland Security Dashboard Browse all tags
cisco

Cisco

ios and ios xe software 14ios-and-ios-xe 10ios software 10ios 9ios-software 7ios-and-ios-xe-software 7asa-and-ftd 7ios-xr 6ios xr 6adaptive security appliance (asa) and firepower threat defense (ftd) 6unity_connection 5small business rv160, rv260, rv340, and rv345 series routers 5small-business-routers 4ios and ios xe 4adaptive security appliance (asa) 4ios-xe 3ios software and cisco ios xe software 3catalyst-sd-wan-manager 3catalyst-sd-wan 3asa 3

CVEs tagged with this vendor (80)

CVE-2026-20127 🚨 CVSS 10.0 Catalyst SD-WAN Controller and Manager
CVE-2026-20127 is a critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Manager that allows unauthenticated remote attackers to…
CVE-2026-20131 🚨 CVSS 10.0 Secure Firewall Management Center (FMC)
CVE-2026-20131 is a critical remote code execution vulnerability in Cisco Secure Firewall Management Center (FMC) Software, classified as insecure deserializati…
CVE-2026-20182 🚨 CVSS 10.0 Catalyst SD-WAN
CVE-2026-20182 is a critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Manager, allowing unauthenticated remote attackers to o…
CVE-2026-20128 🚨 CVSS 7.5 Catalyst SD-WAN Manager
CVE-2026-20128 is a high-severity vulnerability in Cisco Catalyst SD-WAN Manager affecting versions prior to 20.18, allowing unauthenticated remote attackers to…
CVE-2026-20133 🚨 CVSS 6.5 Catalyst SD-WAN Manager
CVE-2026-20133 is a medium severity (CVSS 6.5) information disclosure vulnerability in Cisco Catalyst SD-WAN Software caused by insufficient file system restric…
CVE-2026-20122 🚨 CVSS 5.4 Catalyst SD-WAN Manger
CVE-2026-20122 is a medium severity vulnerability (CVSS 5.4) in Cisco Catalyst SD-WAN Manager affecting the API interface. It allows authenticated remote attack…
CVE-2004-1464 🚨 IOS
CVE-2004-1464 is a medium severity denial of service vulnerability in Cisco IOS versions 12.2(15) and earlier, classified under CWE-400. It allows remote attack…
CVE-2009-2055 🚨 IOS XR
CVE-2009-2055 is a Medium severity (CVSS 5.9) denial-of-service vulnerability in Cisco IOS XR versions 3.4.0 through 3.8.1, classified under CWE-20 (Improper In…
CVE-2010-3035 🚨 IOS XR
CVE-2010-3035 is a denial of service vulnerability in Cisco IOS XR versions 3.4.0 through 3.9.1 when BGP is enabled. The flaw allows remote attackers to cause a…
CVE-2014-2120 🚨 Adaptive Security Appliance (ASA)
CVE-2014-2120 is a medium severity cross-site scripting vulnerability in the WebVPN login page of Cisco Adaptive Security Appliance (ASA) Software, classified u…
CVE-2015-0666 🚨 Prime Data Center Network Manager (DCNM)
CVE-2015-0666 is a directory traversal vulnerability in the fmserver servlet of Cisco Prime Data Center Network Manager (DCNM) versions prior to 7.1(1). This fl…
CVE-2016-6366 🚨 Adaptive Security Appliance (ASA)
CVE-2016-6366 is a buffer overflow vulnerability (CWE-120) in Cisco Adaptive Security Appliance (ASA) Software through version 9.4.2.3 affecting multiple platfo…
CVE-2016-6367 🚨 Adaptive Security Appliance (ASA)
Cisco Adaptive Security Appliance (ASA) Software versions prior to 8.4(1) on ASA 5500, ASA 5500-X, PIX, and FWSM devices contain a command injection vulnerabili…
CVE-2016-6415 🚨 IOS, IOS XR, and IOS XE
CVE-2016-6415 is an information disclosure vulnerability in Cisco IOS, IOS XE, and IOS XR IKEv1 implementations that allows remote attackers to obtain sensitive…
CVE-2017-12231 🚨 IOS software
CVE-2017-12231 is a high-severity denial of service vulnerability in Cisco IOS software versions 12.4 through 15.6 affecting the NAT ALG for H.323 RAS messages.…
CVE-2017-12232 🚨 IOS software
CVE-2017-12232 is a medium severity vulnerability in Cisco IOS software versions 15.0 through 15.6 affecting Cisco Integrated Services Routers Generation 2. It …
CVE-2017-12233 🚨 IOS software
CVE-2017-12233 affects Cisco IOS software versions 12.4 through 15.6, allowing an unauthenticated remote attacker to cause a denial of service by sending crafte…
CVE-2017-12234 🚨 IOS software
CVE-2017-12234 affects Cisco IOS software versions 12.4 through 15.6, allowing an unauthenticated, remote attacker to cause a device reload via improper parsing…
CVE-2017-12235 🚨 IOS software
CVE-2017-12235 is a high-severity denial of service vulnerability in Cisco IOS software versions 12.2 through 15.6 affecting the PROFINET Discovery and Configur…
CVE-2017-12237 🚨 IOS and IOS XE Software
CVE-2017-12237 is a high-severity denial of service vulnerability in the IKEv2 module of Cisco IOS 15.0 through 15.6 and Cisco IOS XE 3.5 through 16.5, affectin…
CVE-2017-12238 🚨 Catalyst 6800 Series Switches
CVE-2017-12238 is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild, with a federal remediation deadline of 2022-03-24.…
CVE-2017-12240 🚨 IOS and IOS XE Software
CVE-2017-12240 is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild, with a federal remediation deadline of 2022-03-24.…
CVE-2017-12319 🚨 IOS XE Software
CVE-2017-12319 is a medium-severity denial-of-service vulnerability in Cisco IOS XE Software affecting versions prior to 16.3 that support BGP EVPN configuratio…
CVE-2017-3881 🚨 IOS and IOS XE
CVE-2017-3881 is a critical vulnerability in Cisco IOS and IOS XE Software affecting the Cluster Management Protocol (CMP) processing code, allowing unauthentic…
CVE-2017-6627 🚨 IOS and IOS XE Software
CVE-2017-6627 is a denial of service vulnerability in Cisco IOS 15.1, 15.2, 15.4, and IOS XE 3.14 through 3.18 caused by improper handling of UDP sockets. An un…
CVE-2017-6663 🚨 IOS and IOS XE Software
CVE-2017-6663 is a medium severity vulnerability in Cisco IOS and IOS XE Software affecting the Autonomic Networking feature, specifically in Denali-16.2.1 and …
CVE-2017-6736 🚨 IOS and IOS XE Software
CVE-2017-6736 is a high-severity buffer overflow vulnerability (CWE-119) in the SNMP subsystem of Cisco IOS and IOS XE Software, affecting all SNMP versions. It…
CVE-2017-6737 🚨 IOS and IOS XE Software
CVE-2017-6737 is a buffer overflow vulnerability (CWE-119) in the SNMP implementation of Cisco IOS and IOS XE Software affecting versions 1, 2c, and 3. It allow…
CVE-2017-6738 🚨 IOS and IOS XE Software
CVE-2017-6738 is a vulnerability in Cisco IOS and IOS XE Software that has been added to CISA's Known Exploited Vulnerabilities catalog as of March 3, 2022, wit…
CVE-2017-6739 🚨 IOS and IOS XE Software
CVE-2017-6739 is a buffer overflow vulnerability (CWE-119) in the SNMP implementation of Cisco IOS and IOS XE Software, affecting versions 1, 2c, and 3. It allo…
CVE-2017-6740 🚨 IOS and IOS XE Software
CVE-2017-6740 is a high-severity buffer overflow vulnerability (CWE-119) in the SNMP subsystem of Cisco IOS and IOS XE Software, affecting all SNMP versions. It…
CVE-2017-6742 🚨 IOS and IOS XE Software
CVE-2017-6742 is a buffer overflow vulnerability (CWE-119) in Cisco IOS and IOS XE Software SNMP implementations affecting versions 1, 2c, and 3. It allows auth…
CVE-2017-6743 🚨 IOS and IOS XE Software
CVE-2017-6743 is a high-severity buffer overflow vulnerability in the SNMP subsystem of Cisco IOS and IOS XE Software, affecting all SNMP versions. It allows au…
CVE-2017-6744 🚨 IOS software
CVE-2017-6744 is a high-severity buffer overflow vulnerability (CWE-119) in the SNMP subsystem of Cisco IOS and IOS XE Software, allowing authenticated remote a…
CVE-2018-0125 🚨 VPN Routers
CVE-2018-0125 is a critical remote code execution vulnerability in the web interface of Cisco RV132W and RV134W VPN routers, caused by incomplete input validati…
CVE-2018-0147 🚨 Secure Access Control System (ACS)
CVE-2018-0147 is a critical remote code execution vulnerability in Cisco Secure Access Control System (ACS) prior to release 5.8 patch 9, caused by insecure des…
CVE-2018-0151 🚨 IOS and IOS XE Software
CVE-2018-0151 is a critical buffer overflow vulnerability in the QoS subsystem of Cisco IOS and IOS XE Software, caused by incorrect bounds checking on UDP port…
CVE-2018-0154 🚨 IOS Software
CVE-2018-0154 is a vulnerability in Cisco IOS Software that has been added to CISA's Known Exploited Vulnerabilities catalog as of March 3, 2022. The vulnerabil…
CVE-2018-0155 🚨 Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches
CVE-2018-0155 is a high-severity denial of service vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 a…
CVE-2018-0156 🚨 IOS Software and Cisco IOS XE Software
CVE-2018-0156 is a high-severity denial of service vulnerability in the Smart Install feature of Cisco IOS and IOS XE Software, caused by improper validation of…
CVE-2018-0158 🚨 IOS Software and Cisco IOS XE Software
CVE-2018-0158 is a vulnerability in Cisco IOS Software and Cisco IOS XE Software that is actively exploited in the wild, as indicated by its inclusion in CISA's…
CVE-2018-0159 🚨 IOS Software and Cisco IOS XE Software
CVE-2018-0159 is a high-severity denial of service vulnerability in Cisco IOS and IOS XE Software affecting the IKEv1 implementation due to improper packet vali…
CVE-2018-0161 🚨 IOS Software
CVE-2018-0161 is a medium severity denial of service vulnerability in the SNMP subsystem of Cisco IOS Software on specific Catalyst Switch models, allowing auth…
CVE-2018-0167 🚨 IOS, XR, and XE Software
CVE-2018-0167 is a vulnerability in Cisco IOS, XR, and XE Software that is currently listed on CISA's Known Exploited Vulnerabilities catalog as actively exploi…
CVE-2018-0171 🚨 IOS and IOS XE
CVE-2018-0171 is a vulnerability in Cisco IOS and IOS XE software that is currently listed on CISA's Known Exploited Vulnerabilities catalog as actively exploit…
CVE-2018-0172 🚨 IOS and IOS XE Software
CVE-2018-0172 is a high-severity denial of service vulnerability in Cisco IOS and IOS XE Software affecting the DHCP option 82 encapsulation functionality. The …
CVE-2018-0173 🚨 IOS and IOS XE Software
CVE-2018-0173 is a vulnerability in Cisco IOS and IOS XE Software that is currently listed on CISA's Known Exploited Vulnerabilities catalog as actively exploit…
CVE-2018-0174 🚨 IOS XE Software
CVE-2018-0174 is a vulnerability in Cisco IOS XE Software that has been added to CISA's Known Exploited Vulnerabilities catalog as of March 3, 2022, with a fede…
CVE-2018-0175 🚨 IOS, XR, and XE Software
CVE-2018-0175 is a vulnerability in Cisco IOS, XR, and XE Software that has been added to CISA's Known Exploited Vulnerabilities catalog as of March 3, 2022. It…
CVE-2018-0179 🚨 IOS Software
CVE-2018-0179 is a denial of service vulnerability in the Login Enhancements feature of Cisco IOS Software versions 15.4(2)T, 15.4(3)M, and 15.4(2)CG and later.…
CVE-2018-0180 🚨 IOS Software
CVE-2018-0180 is a denial of service vulnerability in the Login Enhancements feature of Cisco IOS Software versions 15.4(2)T, 15.4(3)M, and 15.4(2)CG and later.…
CVE-2018-0296 🚨 Adaptive Security Appliance (ASA)
CVE-2018-0296 is a HIGH severity vulnerability (CVSS 7.5) in the web interface of Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) sof…
CVE-2019-15271 🚨 RV Series Routers
CVE-2019-15271 is a high-severity command injection vulnerability in the web-based management interface of Cisco Small Business RV Series Routers, allowing auth…
CVE-2019-1652 🚨 Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers
CVE-2019-1652 affects Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers and is listed on CISA's Known Exploited Vulnerabilities catalog as activ…
CVE-2019-1653 🚨 Small Business RV320 and RV325 Routers
CVE-2019-1653 is a HIGH severity vulnerability (CVSS 7.5) affecting Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers, allowing unauthenticated …
CVE-2020-3118 🚨 IOS XR
CVE-2020-3118 is a high-severity vulnerability in Cisco IOS XR Software affecting the Cisco Discovery Protocol implementation, allowing unauthenticated, adjacen…
CVE-2020-3153 🚨 AnyConnect Secure
CVE-2020-3153 is a local privilege escalation vulnerability in the installer component of Cisco AnyConnect Secure Mobility Client for Windows, classified under …
CVE-2020-3161 🚨 Cisco IP Phones
CVE-2020-3161 is a vulnerability in Cisco IP Phones that has been added to CISA's Known Exploited Vulnerabilities catalog as of November 3, 2021, with a federal…
CVE-2020-3259 🚨 Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)
CVE-2020-3259 is a HIGH severity vulnerability (CVSS 7.5) in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software that allows una…
CVE-2020-3433 🚨 AnyConnect Secure
CVE-2020-3433 is a high-severity vulnerability in Cisco AnyConnect Secure Mobility Client for Windows that allows authenticated local attackers to perform DLL h…
CVE-2020-3452 🚨 Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)
CVE-2020-3452 is a vulnerability in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) that has been added to CISA's Known Exploited Vul…
CVE-2020-3566 🚨 IOS XR
CVE-2020-3566 is a high-severity denial-of-service vulnerability in Cisco IOS XR Software affecting the Distance Vector Multicast Routing Protocol feature due t…
CVE-2020-3569 🚨 IOS XR
CVE-2020-3569 is a high-severity vulnerability in Cisco IOS XR Software affecting the Distance Vector Multicast Routing Protocol feature, allowing unauthenticat…
CVE-2020-3580 🚨 Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)
CVE-2020-3580 is a vulnerability in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software that is actively exploited in the wild, …
CVE-2021-1497 🚨 HyperFlex HX
CVE-2021-1497 is a critical command injection vulnerability in the web-based management interface of Cisco HyperFlex HX, allowing unauthenticated remote attacke…
CVE-2021-1498 🚨 HyperFlex HX
CVE-2021-1498 is a vulnerability in Cisco HyperFlex HX that has been added to CISA's Known Exploited Vulnerabilities catalog as of November 3, 2021. The vulnera…
CVE-2022-20699 🚨 Small Business RV160, RV260, RV340, and RV345 Series Routers
CVE-2022-20699 is an actively exploited vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers, as listed on CISA's Known Exploited…
CVE-2022-20700 🚨 Small Business RV160, RV260, RV340, and RV345 Series Routers
CVE-2022-20700 is a critical vulnerability affecting Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers, with a CVSS v3.1 score of 10.0. The fla…
CVE-2022-20701 🚨 Small Business RV160, RV260, RV340, and RV345 Series Routers
CVE-2022-20701 affects Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers, allowing attackers to execute arbitrary code, elevate privileges, byp…
CVE-2022-20703 🚨 Small Business RV160, RV260, RV340, and RV345 Series Routers
CVE-2022-20703 affects Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers, allowing attackers to execute arbitrary code, elevate privileges, byp…
CVE-2022-20708 🚨 Small Business RV160, RV260, RV340, and RV345 Series Routers
CVE-2022-20708 affects Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers, allowing attackers to execute arbitrary code, elevate privileges, byp…
CVE-2022-20775 🚨 SD-WAN
CVE-2022-20775 is a high-severity vulnerability (CVSS 7.8) in Cisco SD-WAN Software affecting the CLI due to improper access controls. It allows an authenticate…
CVE-2022-20821 🚨 IOS XR
CVE-2022-20821 is a medium severity vulnerability in Cisco IOS XR Software affecting the health check RPM within the NOSi container. It allows an unauthenticate…
CVE-2023-20109 🚨 IOS and IOS XE
CVE-2023-20109 is a memory corruption vulnerability (CWE-787) in the Cisco Group Encrypted Transport VPN (GET VPN) feature of Cisco IOS and IOS XE Software, all…
CVE-2023-20118 🚨 Small Business RV Series Routers
CVE-2023-20118 is a command injection vulnerability in the web-based management interface of Cisco Small Business RV Series Routers (RV016, RV042, RV042G, RV082…
CVE-2023-20198 🚨 IOS XE Web UI
CVE-2023-20198 is a critical vulnerability in Cisco IOS XE Software Web UI with a CVSS score of 10.0, allowing attackers to gain initial access and create local…
CVE-2023-20269 🚨 Adaptive Security Appliance and Firepower Threat Defense
CVE-2023-20269 is a medium severity vulnerability (CVSS 5.0) in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software affecting re…
CVE-2023-20273 🚨 Cisco IOS XE Web UI
CVE-2023-20273 is an actively exploited vulnerability in Cisco IOS XE Web UI, listed on CISA's Known Exploited Vulnerabilities catalog with a federal remediatio…
CVE-2024-20353 🚨 Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)
CVE-2024-20353 is a high-severity denial of service vulnerability affecting Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software.…
CVE-2024-20359 🚨 Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)
CVE-2024-20359 is a vulnerability in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software allowing authenticated local attackers …

Articles tagged with Cisco (30)

INFO
Cisco study finds major frontier models susceptible to multi-turn prompt injection attacks
SC Media · 2026-05-28
MEDIUM
Frontier AI models collapse under multi-turn AI attacks, Cisco finds
Help Net Security · 2026-05-28
INFO
AI models more vulnerable than claimed when faced with iterative attacks
CSO Online · 2026-05-27
HIGH
NCSC-2026-0167 [1.00] [M/H] Kwetsbaarheid verholpen in Cisco Secure Workload
NCSC Netherlands · 2026-05-26
CRITICAL
Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability
FortiGuard Threat Signal · 2026-05-26
INFO
Cisco warns of AI inaccuracies in security incident reports
SC Media · 2026-05-22
CRITICAL
Metasploit Wrap Up 05/22/2026
Rapid7 Research · 2026-05-22
CRITICAL
Cisco patches critical 10.0 flaw in Secure Workload APIs
SC Media · 2026-05-22
INFO
Cisco ThousandEyes Enterprise Agent BrowserBot Command Injection Vulnerability
Cisco Security · 2026-05-20
MEDIUM
Cisco ThousandEyes Virtual Appliance Authenticated Remote Code Execution Vulnerability
Cisco Security · 2026-05-20
CRITICAL
Cisco Secure Workload Unauthorized API Access Vulnerability
Cisco Security · 2026-05-20
MEDIUM
Cisco Nexus 3000 and 9000 Series Switches Border Gateway Protocol Denial of Service Vulnerability
Cisco Security · 2026-05-20
CRITICAL
10.0 Cisco Catalyst SD-WAN Controller bug added to CISA’s KEV list
SC Media · 2026-05-15
CRITICAL
Cisco, Canvas, Microsoft, Exchange 0-Days, NPM Backdoors, GPT-5.5 and more... - SWN #581
SC Media · 2026-05-15
CRITICAL
Cisco zero-day under ongoing attack by persistent threat group
CyberScoop · 2026-05-15
CRITICAL
Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182)
Help Net Security · 2026-05-15
CRITICAL
Cisco warns of an actively exploited SD-WAN flaw with max severity
CSO Online · 2026-05-15
HIGH
NCSC-2026-0157 [1.00] [H/H] Kwetsbaarheid verholpen in Cisco Catalyst SD-WAN Controller en Manager
NCSC Netherlands · 2026-05-15
CRITICAL
Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026
SecurityWeek · 2026-05-15
CRITICAL
April 2026 CVE Landscape
Recorded Future · 2026-05-15
CRITICAL
Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks
BleepingComputer · 2026-05-14
CRITICAL
Cisco Catalyst SD-WAN Manager Vulnerabilities
Cisco Security · 2026-05-14
CRITICAL
Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability
Cisco Security · 2026-05-14
CRITICAL
CISA Adds One Known Exploited Vulnerability to Catalog
CISA All Advisories · 2026-05-14
MEDIUM
NCSC-2026-0149 [1.00] [M/H] Kwetsbaarheid verholpen in Cisco Crosswork Network Controller
NCSC Netherlands · 2026-05-13
INFO
BTS #73 - Uncovering Firmware Risks: From Y2K to Modern Malware
Eclypsium · 2026-05-07
INFO
Attackers Could Exploit AI Vision Models Using Imperceptible Image Changes
SecurityWeek · 2026-05-07
CRITICAL
Pull the Plug: FIRESTARTER Survives Patches, Reboots, and Your Incident Response Plan
Eclypsium · 2026-05-07
CRITICAL
New Cisco DoS flaw requires manual reboot to revive devices
BleepingComputer · 2026-05-06
CRITICAL
China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions
The Hacker News · 2026-05-05