Lucene search

K
cve[email protected]CVE-2015-4278
HistoryJul 16, 2015 - 7:59 p.m.

CVE-2015-4278

2015-07-1619:59:03
CWE-20
web.nvd.nist.gov
19
cisco
email security
esa
denial of service
vulnerability
cve-2015-4278
nvd

7 High

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

55.9%

Cisco Email Security Appliance (ESA) devices with software 8.5.6-106 and 9.5.0-201 allow remote attackers to cause a denial of service (per-domain e-mail reception outage) by placing malformed DMARC policy data in DNS TXT records for a domain, aka Bug ID CSCuv14806.

Affected configurations

NVD
Node
ciscoemail_security_appliance_firmwareMatch8.5.6-106
OR
ciscoemail_security_appliance_firmwareMatch9.5.0-201

7 High

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

55.9%

Related for CVE-2015-4278