Lucene search
K

60 matches found

BDU FSTEC
BDU FSTEC
added 2020/07/17 12:0 a.m.8 views

The vulnerability of Cisco Advanced Malware Protection for Endpoints’ threat detection system arises from an operation that goes beyond the buffer in memory, allowing attackers to trigger a service failure.

The vulnerability of the Cisco Advanced Malware Protection for Endpoints threat detection system is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to cause service failures...

5.5CVSS6.3AI score0.0032EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/17 12:0 a.m.3 views

The vulnerability of Cisco Advanced Malware Protection for Endpoints’ threat detection system arises from an operation that goes beyond the buffer in memory, allowing attackers to trigger a service failure.

The vulnerability of the Cisco Advanced Malware Protection for Endpoints threat detection system is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to cause service failures...

5.5CVSS6.3AI score0.0032EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2020/03/04 7:15 p.m.4 views

CVE-2020-3181

A vulnerability in the malware detection functionality in Cisco Advanced Malware Protection AMP in Cisco AsyncOS Software for Cisco Email Security Appliances ESAs could allow an unauthenticated remote attacker to exhaust resources on an affected device. The vulnerability is due to insufficient...

6.5CVSS6.6AI score0.01525EPSS
Exploits0References1
Prion
Prion
added 2020/03/04 7:15 p.m.16 views

Design/Logic Flaw

A vulnerability in the malware detection functionality in Cisco Advanced Malware Protection AMP in Cisco AsyncOS Software for Cisco Email Security Appliances ESAs could allow an unauthenticated remote attacker to exhaust resources on an affected device. The vulnerability is due to insufficient...

6.4CVSS6.5AI score0.01525EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2020/03/04 4:0 p.m.32 views

Cisco Email Security Appliance Uncontrolled Resource Exhaustion Vulnerability

A vulnerability in the malware detection functionality in Cisco Advanced Malware Protection AMP in Cisco AsyncOS Software for Cisco Email Security Appliances ESAs could allow an unauthenticated remote attacker to exhaust resources on an affected device. The vulnerability is due to insufficient...

6.5CVSS1.8AI score0.01525EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/07/16 12:0 a.m.8 views

The vulnerability of Cisco AMP’s security tools for end devices stems from insufficient checks on dynamically loaded modules, allowing attackers to execute arbitrary code with AMP service privileges.

The vulnerability of Cisco AMP’s security tools for end devices stems from insufficient checks on dynamically loaded modules. Exploiting this vulnerability could allow attackers to execute arbitrary code with AMP service privileges...

6.8CVSS6AI score0.00267EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2019/07/06 1:30 a.m.10 views

CVE-2019-1932 Cisco Advanced Malware Protection for Endpoints Windows Command Injection Vulnerability

A vulnerability in Cisco Advanced Malware Protection AMP for Endpoints for Windows could allow an authenticated, local attacker with administrator privileges to execute arbitrary code. The vulnerability is due to insufficient validation of dynamically loaded modules. An attacker could exploit thi...

6.7CVSS7.3AI score0.00267EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/05 12:0 a.m.3 views

Cisco Advanced Malware Protection for Endpoints for Windows Command Injection Vulnerability

Cisco Advanced Malware Protection AMP for Endpoints for Windows is a Windows-based endpoint security solution from Cisco. The product mainly has advanced threat prevention, monitoring and response features. A command injection vulnerability exists in Cisco?AMP for Endpoints 6.2.3.10807030519 and...

7.2CVSS7.7AI score0.00267EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2018/12/13 12:0 a.m.7 views

The vulnerability of the DLL component of Cisco AMP’s security tools for end devices allows a malicious actor to disable the security services and system scanning functions.

The vulnerability of the DLL component used by Cisco AMP’s security tools for end devices relates to resource management errors. Exploiting this vulnerability allows a malicious actor to remotely disable security services and system scanning services using a specially crafted DLL file...

6.8CVSS6.3AI score0.00334EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2018/11/23 12:0 a.m.7 views

The vulnerability of Cisco Immunet and Cisco Advanced Malware Protection’s scanning components allows attackers to disable the scanning service.

The vulnerability of Cisco Immunet and Cisco Advanced Malware Protection scanning components is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a hacker to disable the scanning service using a specially crafted file...

5.5CVSS5.5AI score0.00966EPSS
Exploits6References4
NVD
NVD
added 2018/11/13 2:29 p.m.34 views

CVE-2018-15452

A vulnerability in the DLL loading component of Cisco Advanced Malware Protection AMP for Endpoints on Windows could allow an authenticated, local attacker to disable system scanning services or take other actions to prevent detection of unauthorized intrusions. To exploit this vulnerability, the...

6.7CVSS5.7AI score0.00334EPSS
Exploits0References2
CNVD
CNVD
added 2018/10/30 12:0 a.m.6 views

Cisco Advanced Malware Protection for Endpoints DLL Preload Vulnerability

Cisco Advanced Malware Protection AMP for Endpoints for Windows is a Windows-based endpoint security solution from Cisco. The product mainly has advanced threat prevention, monitoring and response features. A security vulnerability exists in the DLL loading component of Cisco AMP for Endpoints fo...

6.7CVSS6AI score0.00334EPSS
Exploits0References1
Cisco
Cisco
added 2018/10/29 4:0 p.m.527 views

Cisco Advanced Malware Protection for Endpoints on Windows DLL Preloading Vulnerability

A vulnerability in the DLL loading component of Cisco Advanced Malware Protection AMP for Endpoints on Windows could allow an authenticated, local attacker to disable system scanning services or take other actions to prevent detection of unauthorized intrusions. To exploit this vulnerability, the...

6.7CVSS1.3AI score0.00334EPSS
Exploits0References1
OSV
OSV
added 2018/04/19 8:29 p.m.4 views

CVE-2018-0237

A vulnerability in the file type detection mechanism of the Cisco Advanced Malware Protection AMP for Endpoints macOS Connector could allow an unauthenticated, remote attacker to bypass malware detection. The vulnerability occurs because the software relies on only the file extension for detectin...

5.8CVSS5.8AI score0.01221EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/04/19 8:0 p.m.23 views

CVE-2018-0237

A vulnerability in the file type detection mechanism of the Cisco Advanced Malware Protection AMP for Endpoints macOS Connector could allow an unauthenticated, remote attacker to bypass malware detection. The vulnerability occurs because the software relies on only the file extension for detectin...

5.6AI score0.01221EPSS
Exploits0References2
Cisco
Cisco
added 2018/04/18 4:0 p.m.57 views

Cisco AMP for Endpoints macOS Connector DMG File Malware Bypass Vulnerability

A vulnerability in the file type detection mechanism of the Cisco Advanced Malware Protection AMP for Endpoints macOS Connector could allow an unauthenticated, remote attacker to bypass malware detection. The vulnerability occurs because the software relies on only the file extension for detectin...

5.8CVSS1.4AI score0.01221EPSS
Exploits0References1
CNVD
CNVD
added 2017/11/20 12:0 a.m.5 views

Cisco Web Security Appliance Cisco AsyncOS Software File Bypass Vulnerability

The Cisco Web Security Appliance WSA is a set of Web security appliances from Cisco USA. The appliance provides SaaS-based access control, real-time web reporting and tracking, and the development of security policies.Cisco AsyncOS Software is a set of operating systems that run on it. A security...

5.3CVSS6.8AI score0.01638EPSS
Exploits0References1
OSV
OSV
added 2017/11/16 7:29 a.m.4 views

CVE-2017-12303

A vulnerability in the Advanced Malware Protection AMP file filtering feature of Cisco AsyncOS Software for Cisco Web Security Appliance WSA could allow an unauthenticated, remote attacker to bypass a configured AMP file filtering rule. The file types affected are zipped or archived file types. T...

5.3CVSS5.8AI score0.01638EPSS
Exploits0References3
OSV
OSV
added 2017/10/22 6:29 p.m.3 views

CVE-2017-12317

The Cisco AMP For Endpoints application allows an authenticated, local attacker to access a static key value stored in the local application software. The vulnerability is due to the use of a static key value stored in the application used to encrypt the connector protection password. An attacker...

6.7CVSS5.8AI score0.003EPSS
Exploits0References2
CNVD
CNVD
added 2017/09/08 12:0 a.m.3 views

Cisco AsyncOS Software Security Bypass Vulnerability

Cisco Email Security Appliances ESAs is an email security appliance from Cisco.AsyncOS Software is the operating system used in it.Advanced Malware Protection AMP is one of the Advanced Malware Protection components. Advanced Malware Protection AMP is one of the advanced malware protection...

5.8CVSS5.8AI score0.01638EPSS
Exploits0References1
Rows per page
Query Builder