Vulnerabilities in Cisco

3,206 results
Vexday analysis

Com 3.204 CVEs catalogadas e 53 confirmadas em exploração ativa pelo CISA KEV, a taxa de exploração dos produtos Cisco está 3,7 vezes acima da média geral do catálogo, o que indica risco operacional significativamente elevado para organizações que dependem dessas tecnologias. Há ainda 199 vulnerabilidades de severidade crítica e 77 com prova de conceito pública disponível, ampliando a superfície de ataque explorável sem necessidade de capacidade ofensiva avançada. O tipo de falha mais recorrente é CWE-20 (validação de entrada inadequada), uma classe de vulnerabilidade frequentemente presente em componentes de rede e que tende a produzir impacto amplo quando explorada. A CVE mais perigosa em exploração ativa neste momento é CVE-2021-1498, com EPSS máximo de 1,0 — indicando probabilidade de exploração extremamente alta —, e deve ser tratada como prioridade imediata em qualquer processo de gestão de patches.

CVE-2019-1871HIGHCisco Integrated Management Controller Buffer Overflow VulnerabilityEPSS 3.3%CVE-2020-3569HIGHCisco IOS XR Software DVMRP Memory Exhaustion VulnerabilitiesEPSS 3.3%KEVCVE-2019-15958HIGHCisco Prime Infrastructure and Evolved Programmable Network Manager Remote Code Execution VulnerabilityEPSS 3.3%CVE-2019-15957HIGHCisco Small Business Routers RV016, RV042, RV042G, RV082, RV320, and RV325 Command Injection VulnerabilityEPSS 3.2%CVE-2025-20292MEDIUMCisco NXOS Software Command Injection VulnerabilityEPSS 3.2%CVE-2021-1451HIGHCisco IOS XE Software Easy Virtual Switching System Arbitrary Code Execution VulnerabilityEPSS 3.2%CVE-2022-20829CRITICALCisco Adaptive Security Device Manager and Adaptive Security Appliance Software Client-side Arbitrary Code Execution VulnerabilityEPSS 3.2%CVE-2020-3481HIGHClam AntiVirus (ClamAV) Software Null Pointer Dereference VulnerabilityEPSS 3.2%CVE-2020-3287HIGHCisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution VulnerabilitiesEPSS 3.2%CVE-2020-3294HIGHCisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution VulnerabilitiesEPSS 3.2%CVE-2020-3293HIGHCisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution VulnerabilitiesEPSS 3.2%CVE-2020-3291HIGHCisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution VulnerabilitiesEPSS 3.2%CVE-2020-3296HIGHCisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution VulnerabilitiesEPSS 3.2%CVE-2020-3288HIGHCisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution VulnerabilitiesEPSS 3.2%CVE-2020-3289HIGHCisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution VulnerabilitiesEPSS 3.2%CVE-2020-3290HIGHCisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution VulnerabilitiesEPSS 3.2%CVE-2020-3292HIGHCisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution VulnerabilitiesEPSS 3.2%CVE-2020-3295HIGHCisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution VulnerabilitiesEPSS 3.2%CVE-2020-3286HIGHCisco Small Business RV Series Routers Stack Overflow Arbitrary Code Execution VulnerabilitiesEPSS 3.2%CVE-2020-3332HIGHCisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers Command Shell Injection VulnerabilityEPSS 3.2%