Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCiscoCVELIST:CVE-2016-9212
HistoryDec 14, 2016 - 12:37 a.m.

CVE-2016-9212

2016-12-1400:37:00
cisco
www.cve.org

0.002 Low

EPSS

Percentile

58.4%

JSON

A vulnerability in the Decrypt for End-User Notification configuration parameter of Cisco AsyncOS Software for Cisco Web Security Appliances could allow an unauthenticated, remote attacker to connect to a secure website over Secure Sockets Layer (SSL) or Transport Layer Security (TLS), even if the WSA is configured to block connections to the website. Affected Products: This vulnerability affects Cisco Web Security Appliances if the HTTPS decryption options are enabled and configured for the device to block connections to certain websites. More Information: CSCvb49012. Known Affected Releases: 9.0.1-162 9.1.1-074.

CNA Affected

[
  {
    "product": "Cisco Web Security Appliance",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cisco Web Security Appliance"
      }
    ]
  }
]

Related

cve 1
openvas 1
nvd 1
prion 1
cisco 1
cve
cve
CVE-2016-9212
2016-12-14 00:59:34
openvas
openvas
Cisco Web Security Appliance Drop Decrypt Policy Bypass Vulnerability
2016-12-08 00:00:00
nvd
nvd
CVE-2016-9212
2016-12-14 00:59:34
prion
prion
Design/Logic Flaw
2016-12-14 00:59:00
cisco
cisco
Cisco Web Security Appliance Drop Decrypt Policy Bypass Vulnerability
2016-12-07 16:00:00

0.002 Low

EPSS

Percentile

58.4%

JSON
Related for CVELIST:CVE-2016-9212
cve1openvas1nvd1prion1cisco1