Cisco Umbrella Virtual Appliance — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Umbrella Virtual Appliance, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2017-12350 — CVSS 8.2 (high): A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to…
CVE-2022-20773 — CVSS 7.5 (high): A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated…
CVE-2017-6679 — CVSS 6.4 (medium): The Cisco Umbrella Virtual Appliance Version 2.0.3 and prior contained an undocumented encrypted remote support tunnel (SSH) which auto…
CVE-2026-20246 — CVSS 6.0 (medium): A vulnerability in the vmadmin CLI of Cisco Umbrella Virtual Appliance could allow an authenticated, local attacker to elevate privileges…
CVE-2022-20922 — CVSS 5.8 (medium): Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products…