Cisco network services orchestrator
This hub aggregates every CVE we track for Cisco network services orchestrator, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
10
CVEs tracked
0
Critical
6
High
0
In CISA KEV
Severity distribution
HIGH6MEDIUM4
Monthly trend
0
1
0
2
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 10 most recently published vulnerabilities affecting Cisco network services orchestrator.
- CVE-2021-1132Cisco Network Services Orchestrator Path Traversal Vulnerability5.3
- CVE-2022-20655A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to ...8.8
- CVE-2024-20381Cisco Network Services Orchestrator Configuration Update Authorization Bypass Vulnerability8.8
- CVE-2024-20389A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could allow an authenticated, low-privileged, local attacker to read and write arbitrary files as root on...7.8
- CVE-2024-20326A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could allow an authenticated, low-privileged, local attacker to read and write arbitrary files as root on...7.8
- CVE-2024-20366A vulnerability in the Tail-f High Availability Cluster Communications (HCC) function pack of Cisco Crosswork Network Services Orchestrator (NSO) could allow an authenticated, local attacker to ele...7.8
- CVE-2024-20369A vulnerability in the web-based management interface of Cisco Crosswork Network Services Orchestrator (NSO) could allow an unauthenticated, remote attacker to redirect a user to a malicious web pa...4.7
- CVE-2023-20040A vulnerability in the NETCONF service of Cisco Network Services Orchestrator (NSO) could allow an authenticated, remote attacker to cause a denial of service (DoS) on an affected system that is ru...5.5
- CVE-2020-3362Cisco Network Services Orchestrator Information Disclosure Vulnerability4.7
- CVE-2018-0463Cisco Network Services Orchestrator Network Plug and Play Information Disclosure Vulnerability7.5
Product normalization is registry-driven with AI assist and human review. How it works