C

Cisco Security Vulnerabilities (CVE)

Explore vulnerabilities and security advisories affecting Cisco products.

7 known CVE vulnerabilities tracked

Critical
2
High
1
Medium
4
Low
0
None
0

Vulnerabilities By Year

1
2022
1
2025
5
2026

Products Affected

Firepower Threat Defense Software 2 Adaptive Security Appliance Software 1 Asyncos 1 Catalyst Sd-Wan Manager 1 Webex Meetings 1 Ios 1

All Cisco CVEs

Recent Highest Score Oldest
CVE-2026-20233
6.1 medium

A vulnerability in the web-based user interface of Cisco Webex Meetings could have allowed an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. Cisco has addressed this vulnerability in the Webex Meetings service, and no customer action is needed. This vulnerability..

Webex Meetings Jun 3, 2026
CVE-2026-20182
10.0 critical

May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and fixed after the was disclosed in February 2026. This new advisory is for a new vulnerability in the control connection handshaking. The section of this advisory includes Show Contr

Catalyst Sd-Wan Manager May 14, 2026
CVE-2026-20025
6.8 medium

A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an authenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. To exploit this vulnerability, the attacker must have the OSPF se

Firepower Threat Defense Software Mar 4, 2026
CVE-2026-20016
6.0 medium

A vulnerability in the Cisco FXOS Software CLI feature for Cisco Secure Firewall ASA Software and Secure FTD Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system with root-level privileges. To exploit this vulnerability, the attacker

Adaptive Security Appliance Software Mar 4, 2026
CVE-2026-20069
4.3 medium

A vulnerability in the VPN web services component of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct browser-based attacks against users of an affected device. This ..

Firepower Threat Defense Software Mar 4, 2026
CVE-2025-20393
10.0 critical

A vulnerability in the Spam Quarantine feature of Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Email and Web Manager could allow an unauthenticated, remote attacker to execute arbitrary system commands on an affected device with root privileges. This vulnerability is due..

Asyncos Dec 17, 2025
CVE-2022-20920
7.7 high

A vulnerability in the SSH implementation of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. This vulnerability is due to improper handling of resources during an exceptional situation. An attacker could exploit this v

Ios Oct 10, 2022