Cyber Resilience

← All vendors

Cisco

CPE vendor key: cisco · 444 CVEs published in the last 24 months.

CVEs (365 d)
105
▲ +1 vs prior 30d
Avg CVSS (365 d)
6.94
over 105 CVEs
Avg EPSS pct (365 d)
0.36
higher = more likely exploited
KEV hit rate (365 d)
14.3%
15 of 105 added to CISA KEV
LLM-credited CVEs
0
 

Monthly CVE volume — last 24 months

202420252026092
Each point is one calendar month. Bars in the severity card to the right slice the same volume by CVSS band.

Severity mix

CritHighMedLow
Stacked by CVSS band (Critical / High / Medium / Low) using the best available metric per CVE.

Top affected products (24 mo)

adaptive_security_appliance_
47
identity_services_engine
43
ios_xe
41
secure_firewall_management_c
35
catalyst_sd-wan_manager
32
firepower_threat_defense_sof
29
ios_xr
26
firepower_threat_defense
24
ios
16
unified_contact_center_expre
15
Distinct CVEs that include each product in their CPE configuration.

Top CWEs (24 mo)

CWE-79
72
CWE-20
21
CWE-78
19
CWE-787
17
CWE-284
16
CWE-22
15
CWE-200
14
CWE-121
9
CWE-862
9
CWE-80
9
Distinct CVEs assigned each weakness.

Recent CISA KEV adds (last 12 months)

AddedCVEProductKEV name
2026-06-15CVE-2026-20262Catalyst SD-WAN ManagerCisco Catalyst SD-WAN Manager Directory or Path Traversal Vulnerability
2026-06-09CVE-2026-20245Catalyst SD-WAN ManagerCisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability
2026-05-14CVE-2026-20182Catalyst SD-WANCisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability
2026-04-20CVE-2026-20122Catalyst SD-WAN MangerCisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability
2026-04-20CVE-2026-20128Catalyst SD-WAN ManagerCisco Catalyst SD-WAN Manager Storing Passwords in a Recoverable Format Vulnerability
2026-04-20CVE-2026-20133Catalyst SD-WAN ManagerCisco Catalyst SD-WAN Manager Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
2026-03-19CVE-2026-20131Secure Firewall Management Center (FMC)Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data Vulnerability
2026-02-25CVE-2026-20127Catalyst SD-WAN Controller and ManagerCisco Catalyst SD-WAN Controller and Manager Authentication Bypass Vulnerability
2026-01-21CVE-2026-20045Unified Communications ManagerCisco Unified Communications Products Code Injection Vulnerability
2025-12-17CVE-2025-20393Multiple ProductsCisco Multiple Products Improper Input Validation Vulnerability
2025-09-29CVE-2025-20352IOS and IOS XECisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability
2025-09-25CVE-2025-20333Secure Firewall Adaptive Security Appliance and Secure Firewall Threat DefenseCisco Secure Firewall Adaptive Security Appliance (ASA) and Secure Firewall Threat Defense (FTD) Buffer Overflow Vulnerability
2025-09-25CVE-2025-20362Secure Firewall Adaptive Security Appliance and Secure Firewall Threat DefenseCisco Secure Firewall Adaptive Security (ASA) Appliance and Secure Firewall Threat Defense (FTD) Missing Authorization Vulnerability
2025-07-28CVE-2025-20281Identity Services EngineCisco Identity Services Engine Injection Vulnerability
2025-07-28CVE-2025-20337Identity Services EngineCisco Identity Services Engine Injection Vulnerability
Filtered to KEV rows where the CISA vendor name matches this vendor, to drop cross-OS noise (e.g. third-party Windows apps that CPE-map to Microsoft).

LLM-credited CVEs from this vendor

No LLM-credited CVEs for this vendor yet.

From mythos_attributed_cves: CVEs whose NVD description or vendor advisory credits an LLM-assisted discovery. Confidence is high for every row.

Generated 19 June 2026 13:18 UTC <span class="time-ago" data-iso="2026-06-19T13:18:30Z"></span>.