Design/Logic Flaw

2019-07-0420:15:00

PRIOn knowledge base

www.prio-n.com

8.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.4%

JSON

A vulnerability in the HTTPS decryption feature of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to insufficient validation of Secure Sockets Layer (SSL) server certificates. An attacker could exploit this vulnerability by installing a malformed certificate in a web server and sending a request to it through the Cisco WSA. A successful exploit could allow the attacker to cause an unexpected restart of the proxy process on an affected device.

CPENameOperatorVersion
asyncosge10.5
asyncoslt10.5.5
asyncosge11.5
asyncoslt11.5.2
web_security_applianceeq10.5.2-72
web_security_applianceeq11.7.0-fcs-334
web_security_applianceeq10.5.3-25

Name	Operator	Version
asyncos	ge	10.5
asyncos	lt	10.5.5
asyncos	ge	11.5
asyncos	lt	11.5.2
web_security_appliance	eq	10.5.2-72
web_security_appliance	eq	11.7.0-fcs-334
web_security_appliance	eq	10.5.3-25