Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 4 are already weaponised in the wild — see the Exploited section.
Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability
CVEs:CVE-2025-20362
Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability
CVEs:CVE-2025-20333
Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability
CVEs:CVE-2025-20363
Cisco IOS XE Software for Catalyst 9800 Series Wireless Controller for Cloud Unauthenticated Access to Certificate Enrollment Service Vulnerability
CVEs:CVE-2025-20293
Cisco Wireless Access Point Software Device Analytics Action Frame Injection Vulnerability
CVEs:CVE-2025-20364
Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability
CVEs:CVE-2025-20365
Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability
CVEs:CVE-2025-20311
Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches Virtual Interface Access Control List Bypass Vulnerability
CVEs:CVE-2025-20316
Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability
CVEs:CVE-2025-20339
Cisco IOS and IOS XE Software CLI Denial of Service Vulnerability
CVEs:CVE-2025-20149
Cisco IOS Software Industrial Ethernet Switch Device Manager Denial of Service Vulnerability
CVEs:CVE-2025-20327
Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability
CVEs:CVE-2025-20160
Cisco IOS XE Software HTTP API Command Injection Vulnerability
CVEs:CVE-2025-20334
Cisco IOS XE Software CLI Argument Injection Vulnerability
CVEs:CVE-2025-20338
Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability
CVEs:CVE-2025-20315
Cisco IOS XE Software Secure Boot Bypass Vulnerabilities
Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability
CVEs:CVE-2025-20352
Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability
CVEs:CVE-2025-20312
Cisco IOS XE Software Web Authentication Reflected Cross-Site Scripting Vulnerability
CVEs:CVE-2025-20240
Cisco IOS XR Software Management Interface ACL Bypass Vulnerability
CVEs:CVE-2025-20159
Cisco IOS XR ARP Broadcast Storm Denial of Service Vulnerability
CVEs:CVE-2025-20340
Cisco IOS XR Software Image Verification Bypass Vulnerability
CVEs:CVE-2025-20248
Cisco Unified Communications Manager Cross-Site Request Forgery Vulnerability
CVEs:CVE-2025-20326
Cisco Evolved Programmable Network Manager Arbitrary File Upload Vulnerability
CVEs:CVE-2025-20287
Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Information Disclosure Vulnerability
CVEs:CVE-2025-20270
Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability
CVEs:CVE-2025-20280
Cisco Unified Communications Manager IM & Presence Service Cross-Site Scripting Vulnerability
CVEs:CVE-2025-20330
Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities
Cisco Webex Meetings URL Redirection Vulnerability
CVEs:CVE-2025-20291
Cisco Webex Meetings Cross-Site Scripting Vulnerability
CVEs:CVE-2025-20328
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.