Cisco Advisories — FreeIntelHub

Cisco Advisories Vulnerability Disclosure Cisco 4d ago

Cisco Nexus 3000 and 9000 Series Switches Border Gateway Protocol Denial of Service Vulnerability

A vulnerability in the Border Gateway Protocol (BGP) enforce-first-as feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in sta...

T1498

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco 4d ago

Cisco Secure Workload Unauthorized API Access Vulnerability

A vulnerability in the access validation of internal REST APIs of Cisco Secure Workload could allow an unauthenticated, remote attacker to access site resour...

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco 4d ago

Cisco ThousandEyes Virtual Appliance Authenticated Remote Code Execution Vulnerability

A vulnerability in the SSL certificate handling of Cisco ThousandEyes Virtual Appliance could allow an authenticated, remote attacker to execute commands on ...

T1190

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco 4d ago

Cisco ThousandEyes Enterprise Agent BrowserBot Command Injection Vulnerability

A vulnerability in the BrowserBot component of Cisco ThousandEyes Enterprise Agent could have allowed an authenticated, remote attacker to execute arbitrary ...

T1059

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco May 14

Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability

May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and fixed after the Cisco Catalyst SD-WAN C...

T1556

Cisco Advisories →

Cisco Advisories Advisory Cisco May 14

Cisco Catalyst SD-WAN Manager Vulnerabilities

Multiple vulnerabilities in Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow a remote attacker to gain access to sensitive information, el...

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco May 14

Cisco Crosswork Network Controller and Cisco Network Services Orchestrator Advisory

Following the initial publication of the Security Advisory about a denial of service (DoS) condition in Cisco Crosswork Network Controller and Cisco Network ...

T1498

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco May 6

Cisco Unity Connection Remote Code Execution and Server-Side Request Forgery Vulnerabilities

Multiple vulnerabilities in Cisco Unity Connection could allow a remote attacker to execute arbitrary code on or conduct server-side request forgery (SSRF) a...

T1190 2 IOCs

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco May 6

Cisco Enterprise Chat and Email Lite Agent File Upload Vulnerability

A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct browser-based att...

T1059

Cisco Advisories →

Cisco Advisories Advisory Cisco May 6

Cisco Identity Services Engine Authentication Bypass Vulnerabilities

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow a remote attacker to bypass authorization mechanisms or examine error messages t...

T1556

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco May 6

Cisco Prime Infrastructure Information Disclosure Vulnerability

A vulnerability in the log file download functionality of Cisco Prime Infrastructure could allow an authenticated, remote attacker to download arbitrary log ...

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco May 6

Cisco Slido Insecure Direct Object Reference Vulnerability

A vulnerability in the REST API of Cisco Slido could have allowed an authenticated, remote attacker to access the social profile data of other users or affec...

T1598

Cisco Advisories →

Cisco Advisories Advisory Cisco May 6

Cisco IoT Field Network Director Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco IoT Field Network Director Software could allow an authenticated, remote attacker to ...

T1498

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco May 6

Cisco Crosswork Network Controller and Cisco Network Services Orchestrator Connection Exhaustion Denial of Service Vulnerability

A vulnerability in the connection-handling mechanism of Cisco Crosswork Network Controller (CNC) and Cisco Network Services Orchestrator (NSO) could allow an...

T1498

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco May 6

Cisco SG350 and SG350X Series Managed Switches SNMP Denial of Service Vulnerability

A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco 350 Series Managed Switches (SG350) and Cisco 350X Series Stackable Manag...

T1498

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco May 5

Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to condu...

Cisco Advisories →

Cisco Advisories Campaigns Cisco Apr 30

Continued Evolution of Persistence Mechanism Against Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense

On April 23, 2026, the U.S.

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Apr 28

Cisco Identity Services Engine Remote Code Execution and Path Traversal Vulnerabilities

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote atta...

T1190

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Apr 24

Cisco ACI Multi-Site CloudSec Encryption Information Disclosure Vulnerability

A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated...

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Apr 22

Cisco Integrated Management Controller Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow a remote attacker to conduct a cro...

Cisco Advisories →