Lucene search
K

287 matches found

Cisco
Cisco
added 2025/02/05 4:0 p.m.10 views

Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance SNMP Polling Information Disclosure Vulnerability

A vulnerability in Simple Network Management Protocol SNMP polling for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an authenticated, remote attacker to obtain confidential information about the underlying operating system. This...

4.3CVSS4.2AI score0.00331EPSS
Exploits0References1
Cisco
Cisco
added 2025/02/05 4:0 p.m.17 views

Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Vulnerabilities

Multiple vulnerabilities in Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an attacker to execute arbitrary commands locally or remotely. For more information about these vulnerabilities, see the Details...

6.5CVSS6.1AI score0.00846EPSS
Exploits0References1
Cisco
Cisco
added 2025/02/05 4:0 p.m.12 views

Cisco Secure Email and Web Manager and Secure Email Gateway Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Email Gateway could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability is...

4.8CVSS4.9AI score0.00312EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 1:25 a.m.12 views

CVE-2024-20401

A vulnerability in the content scanning and message filtering features of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to overwrite arbitrary files on the underlying operating system. This vulnerability is due to improper handling of email attachments when file...

9.8CVSS7.7AI score0.02278EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/05 12:0 a.m.5 views

PT-2025-5713 · Cisco · Cisco Secure Web Appliance +2

Name of the Vulnerable Software and Affected Versions: Cisco Secure Email and Web Manager affected versions not specified Cisco Secure Email Gateway affected versions not specified Cisco Secure Web Appliance affected versions not specified Description: A vulnerability in Simple Network Management...

4.3CVSS6.9AI score0.00331EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/02/05 12:0 a.m.2 views

PT-2025-5709 · Cisco · Cisco Secure Email Gateway +2

Name of the Vulnerable Software and Affected Versions: Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Web Appliance affected versions not specified Description: A vulnerability in the web-based management interface could allow an authenticated, remote attacker to perform...

8.5CVSS7.2AI score0.00846EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/02/05 12:0 a.m.6 views

Cisco多款产品 信息泄露漏洞

Cisco Secure Web Appliance and others are products of Cisco USA.Cisco Secure Web Appliance is an application.Cisco Secure Email and Web Manager is a secure email and web manager.Cisco Secure Email Gateway is a secure email gateway software. An information disclosure vulnerability exists in variou...

4.3CVSS5.9AI score0.00331EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/01/22 12:0 a.m.5 views

The vulnerability of the Secure Email Gateway (SEG) email security gateway arises from the possibility of operations going beyond the buffer in memory. This allows attackers to circumvent security restrictions, enhance their privileges, or cause service interruptions.

The vulnerability of the Secure Email Gateway SEG email security gateway is related to the escape of operations beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions, gain additional privileges, or cause service interruptions by...

10CVSS5.7AI score0.0136EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/18 12:0 a.m.7 views

The vulnerability in the web interface for controlling Cisco AsyncOS devices, including Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance, allows attackers to execute XSS attacks.

The vulnerability in the web interface for managing Cisco AsyncOS devices, including Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance, is related to deficiencies in the security measures used to protect the structure of web pages. Exploiting this vulnerability...

5.5CVSS5.4AI score0.0027EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/11/08 12:0 a.m.4 views

Cisco Secure Email and Web Manager XSS (cisco-sa-esa-wsa-sma-xss-zYm3f49n)

According to its self-reported version, Cisco Secure Email and Web Manager is affected by a vulnerability. - A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance could allow an...

5.4CVSS5.7AI score0.0027EPSS
Exploits0References3
OSV
OSV
added 2024/11/06 5:15 p.m.1 views

CVE-2024-20504

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface...

5.4CVSS6AI score0.0027EPSS
Exploits0References1
NVD
NVD
added 2024/11/06 5:15 p.m.11 views

CVE-2024-20504

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface...

5.4CVSS0.0027EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/06 4:29 p.m.14 views

CVE-2024-20504 Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Stored Cross-Site Scripting Vulnerabilities

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface...

5.4CVSS0.0027EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/06 12:0 a.m.1 views

PT-2024-8177 · Cisco · Cisco Asyncos

Name of the Vulnerable Software and Affected Versions: Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance affected versions not specified Description: A vulnerability in the web-based management interface could allow an authenticated,...

5.5CVSS6AI score0.0027EPSS
Exploits0References7
NVD
NVD
added 2024/09/20 11:15 a.m.21 views

CVE-2024-9043

Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process. Remote unauthenticated attackers can send crafted packets to crash the process, thereby bypassing authentication and obtaining system administrator privileges...

9.8CVSS0.0136EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/20 10:14 a.m.32 views

CVE-2024-9043 Cellopoint Secure Email Gateway - Buffer Overflow

Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process. Remote unauthenticated attackers can send crafted packets to crash the process, thereby bypassing authentication and obtaining system administrator privileges...

9.8CVSS7.3AI score0.0136EPSS
Exploits0References2
CVE
CVE
added 2024/09/20 10:14 a.m.54 views

CVE-2024-9043

The CVE-2024-9043 entry concerns Cellopoint Secure Email Gateway. A buffer overflow in the authentication process affects versions prior to 4.5.0 (CNNVD/PT-2024-10233 lists 4.2.1–4.5.0). The underlying issue allows remote, unauthenticated attackers to crash the gateway, bypass authentication, and...

9.8CVSS9.8AI score0.0136EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/09/20 12:0 a.m.4 views

Cellopoint Secure Email Gateway 安全漏洞

Cellopoint Secure Email Gateway Cellopoint SEG is a secure email gateway from Cellopoint Corporation in China. A security vulnerability exists in Cellopoint Secure Email Gateway versions 4.2.1 through 4.5.0 that originates from a buffer overflow during the authentication process, which allows a...

9.8CVSS7.6AI score0.0136EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/07/19 12:0 a.m.8 views

The vulnerabilities of the content scanning and message filtering functions of the Cisco Secure Email Gateway allow attackers to enhance their privileges.

The vulnerability of content scanning and message filtering functions of the Cisco Secure Email Gateway relates to incorrect restrictions on the path name to the directory. Exploiting this vulnerability can allow a malicious actor to enhance their privileges, modify the device configuration,...

10CVSS6.1AI score0.02278EPSS
Exploits0References2Affected Software1
CISA
CISA
added 2024/07/18 12:0 p.m.5 views

Cisco Releases Security Updates for Multiple Products

Cisco released security updates to address vulnerabilities in Cisco software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following advisories and apply necessary updates: Cisco Secu...

8.6AI score
Exploits0References9
Rows per page
Query Builder