CVE-2023-20215

🗓️ 03 Aug 2023 21:16:38Reported by ciscoType

Vulnerability in Cisco Secure Web Appliance Scanning Engine

Reporter	Title	Published	Views	Family All 11
Cisco	Cisco Secure Web Appliance Content Encoding Filter Bypass Vulnerability	2 Aug 202316:00	–	cisco
Tenable Nessus	Cisco Secure Web Appliance Content Encoding Filter Bypass (cisco-sa-wsa-bypass-vXvqwzsj)	22 Sep 202300:00	–	nessus
CNNVD	Cisco Secure Web Appliance 安全漏洞	3 Aug 202300:00	–	cnnvd
CNVD	Cisco AsyncOS Input Validation Error Vulnerability	6 Aug 202300:00	–	cnvd
Cvelist	CVE-2023-20215	3 Aug 202321:16	–	cvelist
EUVD	EUVD-2023-24394	3 Oct 202520:07	–	euvd
NCSC	Vulnerability discovered in Cisco Secure Web Appliance	3 Aug 202300:00	–	ncsc
NVD	CVE-2023-20215	3 Aug 202322:15	–	nvd
Prion	Input validation	3 Aug 202322:15	–	prion
Positive Technologies	PT-2023-4106 · Cisco · Cisco Secure Web Appliance +1	2 Aug 202300:00	–	ptsecurity

NVD

Node

cisco asyncosMatch11.7.0-406

cisco asyncosMatch11.7.0-418

cisco asyncosMatch11.7.1-006

cisco asyncosMatch11.7.1-020

cisco asyncosMatch11.7.1-049

cisco asyncosMatch11.7.2-011

cisco asyncosMatch11.8.0-414

cisco asyncosMatch11.8.1-023

cisco asyncosMatch11.8.3-018

cisco asyncosMatch11.8.3-021

cisco asyncosMatch12.0.1-268

cisco asyncosMatch12.0.3-007

cisco asyncosMatch12.5.1-011

cisco asyncosMatch12.5.2-007

cisco asyncosMatch12.5.4-005

cisco asyncosMatch12.5.5-004

cisco asyncosMatch14.0.2-012

cisco asyncosMatch14.0.3-014

cisco asyncosMatch14.0.4-005

cisco asyncosMatch14.5.0-498

cisco asyncosMatch14.5.1-008

cisco asyncosMatch14.5.1-016

AND

cisco s195Match-

cisco s395Match-

cisco s695Match-

cisco web_security_appliance_s170Match-

cisco web_security_appliance_s190Match-

cisco web_security_appliance_s380Match-

cisco web_security_appliance_s390Match-

cisco web_security_appliance_s680Match-

cisco web_security_appliance_s690Match-

cisco web_security_appliance_s690xMatch-

[
  {
    "vendor": "Cisco",
    "product": "Cisco Secure Web Appliance",
    "versions": [
      {
        "version": "11.7.0-406",
        "status": "affected"
      },
      {
        "version": "11.7.0-418",
        "status": "affected"
      },
      {
        "version": "11.7.1-049",
        "status": "affected"
      },
      {
        "version": "11.7.1-006",
        "status": "affected"
      },
      {
        "version": "11.7.1-020",
        "status": "affected"
      },
      {
        "version": "11.7.2-011",
        "status": "affected"
      },
      {
        "version": "11.8.0-414",
        "status": "affected"
      },
      {
        "version": "11.8.1-023",
        "status": "affected"
      },
      {
        "version": "11.8.3-018",
        "status": "affected"
      },
      {
        "version": "11.8.3-021",
        "status": "affected"
      },
      {
        "version": "12.0.1-268",
        "status": "affected"
      },
      {
        "version": "12.0.3-007",
        "status": "affected"
      },
      {
        "version": "12.5.2-007",
        "status": "affected"
      },
      {
        "version": "12.5.1-011",
        "status": "affected"
      },
      {
        "version": "12.5.4-005",
        "status": "affected"
      },
      {
        "version": "12.5.5-004",
        "status": "affected"
      },
      {
        "version": "14.5.0-498",
        "status": "affected"
      },
      {
        "version": "14.5.1-016",
        "status": "affected"
      },
      {
        "version": "14.0.3-014",
        "status": "affected"
      },
      {
        "version": "14.0.2-012",
        "status": "affected"
      },
      {
        "version": "14.0.4-005",
        "status": "affected"
      }
    ]
  }
]

Source	Link
sec	www.sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wsa-bypass-vXvqwzsj

21 Nov 2024 07:40Current

5.4Medium risk

Vulners AI Score5.4

CVSS 3.15.3 - 5.8

EPSS0.00097

CWE-202