CVE-2019-1816

🗓️ 03 May 2019 16:25:15Reported by ciscoType

Vulnerability in log subscription subsystem of Cisco WSA allows authenticated attacker to perform command injectio

Reporter	Title	Published	Views	Family All 8
Cisco	Cisco Web Security Appliance Privilege Escalation Vulnerability	1 May 201916:00	–	cisco
Tenable Nessus	Cisco Web Security Appliance Privilege Escalation Vulnerability	22 Jul 201900:00	–	nessus
Cvelist	CVE-2019-1816 Cisco Web Security Appliance Privilege Escalation Vulnerability	3 May 201916:25	–	cvelist
EUVD	EUVD-2019-10373	7 Oct 202500:30	–	euvd
NVD	CVE-2019-1816	3 May 201917:29	–	nvd
Prion	Command injection	3 May 201917:29	–	prion
Positive Technologies	PT-2019-2121 · Cisco · Cisco Web Security Appliance	1 May 201900:00	–	ptsecurity
Vulnrichment	CVE-2019-1816 Cisco Web Security Appliance Privilege Escalation Vulnerability	3 May 201916:25	–	vulnrichment

NVD

Node

cisco web_security_applianceMatch10.5.2-072

cisco web_security_applianceMatch11.0.0-641

cisco web_security_applianceMatch11.5.0-fcs-614

cisco web_security_applianceMatchwsa10.5.0-fcs-000

[
  {
    "product": "Cisco Web Security Appliance (WSA)",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "10.1.4-017",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "10.5.4-018",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "11.5.2-020",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "11.7.0-406",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-wsa-privesc

21 Nov 2024 04:37Current

6.9Medium risk

Vulners AI Score6.9

CVSS 27.2

CVSS 3.17.8

CVSS 35.3

EPSS0.00119

SSVC

CWE-20