Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.
Cisco Identity Services Engine Authorization Bypass Vulnerability
CVEs:CVE-2025-20264
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-111903 | affected | Cisco | — | — |
Cisco Identity Services Engine Unauthenticated Remote Code Execution Vulnerabilities
CVEs:CVE-2025-20282CVE-2025-20281CVE-2025-20337
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-111903 | affected | Cisco | — | — |
| CVRFPID-292424 | affected | Cisco | — | — |
ClamAV UDF File Parsing Out-of-Bounds Read Information Disclosure Vulnerability
CVEs:CVE-2025-20234
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-221075 | affected | Cisco | — | — |
Cisco Meraki MX and Z Series AnyConnect VPN with Client Certificate Authentication Denial of Service Vulnerability
CVEs:CVE-2025-20271
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-204724 | affected | Cisco | — | — |
Cisco Customer Collaboration Platform Information Disclosure Vulnerability
CVEs:CVE-2025-20129
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-194456 | affected | Cisco | — | — |
| CVRFPID-92631 | affected | Cisco | — | — |
Cisco Unified Intelligent Contact Management Enterprise Cross-Site Scripting Vulnerability
CVEs:CVE-2025-20273
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-292874 | affected | Cisco | — | — |
Cisco Identity Services Engine on Cloud Platforms Static Credential Vulnerability
CVEs:CVE-2025-20286
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-111903 | affected | Cisco | — | — |
Cisco Identity Services Engine Arbitrary File Upload Vulnerability
CVEs:CVE-2025-20130
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-111903 | affected | Cisco | — | — |
Cisco Nexus Dashboard Fabric Controller SSH Host Key Validation Vulnerability
CVEs:CVE-2025-20163
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-233075 | affected | Cisco | — | — |
| CVRFPID-280977 | affected | Cisco | — | — |
Cisco ThousandEyes Endpoint Agent for Windows Arbitrary File Delete Vulnerabilities
CVEs:CVE-2025-20259
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-303123 | affected | Cisco | — | — |
Cisco Unified Contact Center Express Editor Remote Code Execution Vulnerability
CVEs:CVE-2025-20275
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-92631 | affected | Cisco | — | — |
Cisco Unified Contact Center Express Vulnerabilities
CVEs:CVE-2025-20276CVE-2025-20277CVE-2025-20279
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-92631 | affected | Cisco | — | — |
Cisco Integrated Management Controller Privilege Escalation Vulnerability
CVEs:CVE-2025-20261
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-112776 | affected | Cisco | — | — |
| CVRFPID-191638 | affected | Cisco | — | — |
Cisco Unified Communications Products Command Injection Vulnerability
CVEs:CVE-2025-20278
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| CVRFPID-189784 | affected | Cisco | — | — |
| CVRFPID-193469 | affected | Cisco | — | — |
| CVRFPID-194456 | affected | Cisco | — | — |
| CVRFPID-198393 | affected | Cisco | — | — |
| CVRFPID-233658 | affected | Cisco | — | — |
| CVRFPID-73608 | affected | Cisco | — | — |
| CVRFPID-88444 | affected | Cisco | — | — |
| CVRFPID-92631 | affected | Cisco | — | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.