Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.
SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software
CVEs:CVE-2017-6742CVE-2017-6741CVE-2017-6739CVE-2017-6737CVE-2017-6740CVE-2017-6738CVE-2017-6736CVE-2017-6744CVE-2017-6743
Cisco StarOS for ASR 5000 Series Routers IPsec VPN Tunnel Denial of Service Vulnerability
CVEs:CVE-2017-3865
Cisco SocialMiner Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6702
Cisco Firepower Management Center Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6715
Cisco Firepower Management Center Stored Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6716
Cisco Firepower Management Center Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6717
Cisco IOS XR Software Local Command Injection Vulnerability
CVEs:CVE-2017-6719
Cisco IOS XR Software Privilege Escalation Vulnerability
CVEs:CVE-2017-6718
Cisco Identity Services Engine Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6701
Cisco Identity Services Engine Reflected Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6605
Cisco Prime Collaboration Provisioning Tool Session Hijacking Vulnerability
CVEs:CVE-2017-6703
Cisco Prime Collaboration Provisioning Tool Arbitrary File Download Vulnerability
CVEs:CVE-2017-6704
Cisco Prime Collaboration Provisioning Tool Information Disclosure Vulnerability
CVEs:CVE-2017-6705
Cisco Prime Collaboration Provisioning Tool Log File Information Disclosure Vulnerability
CVEs:CVE-2017-6706
Cisco Prime Infrastructure and Evolved Programmable Network Manager XML Injection Vulnerability
CVEs:CVE-2017-6662
Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL Injection Vulnerability
CVEs:CVE-2017-6698
Cisco Prime Infrastructure and Evolved Programmable Network Manager Reflected Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6699
Cisco Prime Infrastructure and Evolved Programmable Network Manager DOM Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6700
Cisco Prime Infrastructure Web Framework Code Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6724
Cisco Prime Infrastructure Web Framework Code Cross-Site Scripting Vulnerabilities
CVEs:CVE-2017-6725
Cisco Unified Contact Center Express Clear Text Authentication Vulnerability
CVEs:CVE-2017-6722
Cisco Virtualized Packet Core-Distributed Instance Denial of Service Vulnerability
CVEs:CVE-2017-6678
Cisco Wide Area Application Services TCP Fragment Denial of Service Vulnerability
CVEs:CVE-2017-6721
Cisco WebEx Network Recording Player Multiple Buffer Overflow Vulnerabilities
CVEs:CVE-2017-6669
Cisco AnyConnect Local Privilege Escalation Vulnerability
CVEs:CVE-2017-6638
Cisco Context Service SDK Arbitrary Code Execution Vulnerability
CVEs:CVE-2017-6667
Cisco Unified Communications Domain Manager Open Redirect Vulnerability
CVEs:CVE-2017-6670
Cisco Unified Communications Domain Manager SQL Injection Vulnerabilities
CVEs:CVE-2017-6668
Cisco Prime Data Center Network Manager Debug Remote Code Execution Vulnerability
CVEs:CVE-2017-6639
Cisco Prime Data Center Network Manager Server Static Credential Vulnerability
CVEs:CVE-2017-6640
Cisco Email Security and Content Security Management Appliance Message Tracking Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6661
Cisco Email Security Appliance Attachment Filter Bypass Vulnerability
CVEs:CVE-2017-6671
Cisco Elastic Services Controller Arbitrary Command Execution Vulnerability
CVEs:CVE-2017-6682
Cisco Elastic Services Controller Authentication Request Processing Arbitrary Command Execution Vulnerability
CVEs:CVE-2017-6683
Cisco Elastic Services Controller Insecure Default Credentials Vulnerability
CVEs:CVE-2017-6684
Cisco Elastic Services Controller Insecure Default Password Vulnerability
CVEs:CVE-2017-6688
Cisco Elastic Services Controller Insecure Default Administrator Credentials Vulnerability
CVEs:CVE-2017-6689
Cisco Elastic Services Controller Information Disclosure Vulnerability
CVEs:CVE-2017-6691
Cisco Elastic Services Controller Unauthorized Directory Access Vulnerability
CVEs:CVE-2017-6693
Cisco Elastic Services Controller User Credentials Information Disclosure Vulnerability
CVEs:CVE-2017-6696
Cisco Elastic Services Controller Web Interface System Credentials Information Disclosure Vulnerability
CVEs:CVE-2017-6697
Cisco Firepower Management Center Information Disclosure Vulnerability
CVEs:CVE-2017-6673
Cisco Industrial Network Director Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6675
Cisco Network Convergence System 5500 Series Routers Local Denial of Service Vulnerability
CVEs:CVE-2017-6666
Cisco NX-OS Software Fibre Channel over Ethernet Denial of Service Vulnerability
CVEs:CVE-2017-6655
Cisco Prime Collaboration Assurance Cross-Site Request Forgery Vulnerability
CVEs:CVE-2017-6659
Cisco IP Phone 8800 Series SIP Denial of Service Vulnerability
CVEs:CVE-2017-6656
Cisco StarOS Arbitrary File Modification Vulnerability
CVEs:CVE-2017-6690
Cisco TelePresence Endpoint Denial of Service Vulnerability
CVEs:CVE-2017-6648
Cisco Ultra Services Framework AutoVNF Arbitrary Direction Creation Vulnerability
CVEs:CVE-2017-6680
Cisco Ultra Services Framework AutoVNF VNFStagingView Information Disclosure Vulnerability
CVEs:CVE-2017-6681
Cisco Ultra Services Framework Staging Server Insecure Default Credentials Vulnerability
CVEs:CVE-2017-6685
Cisco Ultra Services Framework Element Manager Insecure Default Credentials Vulnerability
CVEs:CVE-2017-6686
Cisco Ultra Services Framework Element Manager Insecure Default Password Vulnerability
CVEs:CVE-2017-6687
Cisco Ultra Services Framework Element Manager Insecure Default Account Information Vulnerability
CVEs:CVE-2017-6692
Cisco Ultra Services Platform Plaintext Credential Logging Information Disclosure Vulnerability
CVEs:CVE-2017-6694
Cisco Ultra Services Platform Information Disclosure Vulnerability
CVEs:CVE-2017-6695
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.