Lucene search
HistoryJun 13, 2015 - 10:59 a.m.
CVE-2015-4184
cisco
email security
esa
anti-spam
bypass
dns
spf
remote attack
cve-2015-4184
6.9 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
48.0%
The anti-spam scanner on Cisco Email Security Appliance (ESA) devices 3.3.1-09, 7.5.1-gpl-022, and 8.5.6-074 allows remote attackers to bypass intended e-mail restrictions via a malformed DNS SPF record, aka Bug IDs CSCuu35853 and CSCuu37733.
Related
cvelist
cvelist
CVE-2015-4184
2015-06-13 10:00:00
cisco
cisco
Cisco Email Security Appliance Anti-Spam Scanner Bypass Vulnerability
2015-06-12 19:19:00
Cisco Email Security Appliance Anti-Spam Scanner Bypass Vulnerability
2015-06-12 19:19:52
openvas
openvas
Cisco Email Security Appliance Anti-Spam Scanner Bypass Vulnerability
2015-11-10 00:00:00
prion
prion
Privilege escalation
2015-06-13 10:59:00
nessus
nessus
Cisco Email Security Appliance Multiple Vulnerabilities
2015-11-18 00:00:00
6.9 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
48.0%
Related for CVE-2015-4184