Skip to content

Identity & Access Management · head-to-head

Cisco Duo vs IBM Security Identity

On-prem IAM/IGA/PAM/MFA: directories, federation, privileged access, SSO. Counts are scoped to this segment and the selected published-date window. IBM Security Identity carries 90.0× the disclosed CVE volume of Cisco Duo. Volume reflects disclosure practice and install base as much as code quality — read it with the severity mix. Sourced from the NIST NVD; lower counts indicate a smaller disclosed vulnerability surface — not necessarily lower risk.

01

Disclosure record

Bars are normalized per row to the larger value; the leading count is emphasized.

Metric comparison: Cisco Duo versus IBM Security Identity. Each row gives the metric, Cisco Duo’s count on the left and IBM Security Identity’s count on the right.
Cisco DuoMetricIBM Security Identity
1Total CVEs90
0Critical6
0High33
1Medium45
0Low6
2Open in latest108
02

Risk profile

Each severity band as a share of the vendor's own total — strips out raw volume so the profiles compare directly.

Cisco Duo

0.0% critical
Critical
00.0%
High
00.0%
Medium
1100.0%
Low
00.0%

IBM Security Identity

6.7% critical
Critical
66.7%
High
3336.7%
Medium
4550.0%
Low
66.7%
03

Recent activity

Latest in-window disclosures per vendor, newest first. Each ID links to its NVD record.

Cisco Duo

Recent CVEs affecting Cisco Duo
CVESeverityCVSSPublished
CVE-2023-20207(opens NVD record)Medium
4.9
Jul 12, 2023

IBM Security Identity

Recent CVEs affecting IBM Security Identity
CVESeverityCVSSPublished
CVE-2026-5926(opens NVD record)Medium
6.5
Apr 23, 2026
CVE-2026-1346(opens NVD record)Critical
9.3
Apr 8, 2026
CVE-2026-1343(opens NVD record)High
7.2
Apr 8, 2026
CVE-2026-1342(opens NVD record)High
8.5
Apr 8, 2026
CVE-2026-4364(opens NVD record)Medium
5.4
Apr 1, 2026
CVE-2026-4101(opens NVD record)High
8.1
Apr 1, 2026

Track new CVEs for these vendors

Get an email the moment a new vulnerability is disclosed for the products you rely on.

Get alerts