Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.
Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021
CVEs:CVE-2021-40438CVE-2021-36160CVE-2021-34798CVE-2021-39275CVE-2021-33193
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-202683 | affected | Cisco | — | — |
| CVRFPID-209614 | affected | Cisco | — | — |
| CVRFPID-225888 | affected | Cisco | — | — |
Cisco Common Services Platform Collector Improper Logging Restriction Vulnerability
CVEs:CVE-2021-40130
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-257214 | affected | Cisco | — | — |
Cisco Common Services Platform Collector SQL Injection Vulnerability
CVEs:CVE-2021-40129
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-257214 | affected | Cisco | — | — |
Cisco Common Services Platform Collector Stored Cross-Site Scripting Vulnerability
CVEs:CVE-2021-40131
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-257214 | affected | Cisco | — | — |
Cisco AnyConnect Secure Mobility Client for Windows with Network Access Manager Module Privilege Escalation Vulnerability
CVEs:CVE-2021-40124
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-109810 | affected | Cisco | — | — |
Cisco Catalyst PON Series Switches Optical Network Terminal Vulnerabilities
CVEs:CVE-2021-34795CVE-2021-40112CVE-2021-40113
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-284583 | affected | Cisco | — | — |
Cisco Prime Access Registrar Stored Cross-Site Scripting Vulnerability
CVEs:CVE-2021-34731
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-4432 | affected | Cisco | — | — |
Cisco Policy Suite Static SSH Keys Vulnerability
CVEs:CVE-2021-40119
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-213864 | affected | Cisco | — | — |
Cisco Common Services Platform Collector Information Disclosure Vulnerability
CVEs:CVE-2021-34774
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-257214 | affected | Cisco | — | — |
Cisco Unified Communications Products Path Traversal Vulnerability
CVEs:CVE-2021-34701
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-189784 | affected | Cisco | — | — |
| CVRFPID-277610 | affected | Cisco | — | — |
| CVRFPID-73608 | affected | Cisco | — | — |
| CVRFPID-88444 | affected | Cisco | — | — |
Cisco Email Security Appliance Denial of Service Vulnerability
CVEs:CVE-2021-34741
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-189790 | affected | Cisco | — | — |
Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability
CVEs:CVE-2021-34784
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-190324 | affected | Cisco | — | — |
| CVRFPID-213688 | affected | Cisco | — | — |
Cisco Small Business RV Series Routers Command Injection Vulnerability
CVEs:CVE-2021-40120
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-183630 | affected | Cisco | — | — |
Cisco Small Business Series Switches Session Credentials Replay Vulnerability
CVEs:CVE-2021-34739
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-278027 | affected | Cisco | — | — |
Cisco Small Business 200, 300, and 500 Series Switches Web-Based Management Interface Denial of Service Vulnerability
CVEs:CVE-2021-40127
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-278027 | affected | Cisco | — | — |
Cisco Unified Communications Products Cross-Site Request Forgery Vulnerability
CVEs:CVE-2021-34773
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-189784 | affected | Cisco | — | — |
| CVRFPID-88444 | affected | Cisco | — | — |
Cisco Umbrella Email Enumeration Vulnerability
CVEs:CVE-2021-40126
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-231188 | affected | Cisco | — | — |
Cisco Webex Video Mesh Cross-Site Scripting Vulnerability
CVEs:CVE-2021-40115
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-271948 | affected | Cisco | — | — |
Cisco Webex Video Mesh Arbitrary Site Redirection Vulnerability
CVEs:CVE-2021-1500
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-271948 | affected | Cisco | — | — |
Cisco Webex Meetings Email Content Injection Vulnerability
CVEs:CVE-2021-40128
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-228295 | affected | Cisco | — | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.