34 matches found
EUVD-2019-4226
Malware in sbrugna...
EUVD-2015-6230
Malware in sbrugna...
EUVD-2017-15715
Malware in sbrugna...
EUVD-2020-24641
Malware in sbrugna...
EUVD-2020-24388
Malware in sbrugna...
EUVD-2021-6596
Malicious code in bioql PyPI...
CVE-2020-3122 Cisco Content Security Management Appliance Information Disclosure Vulnerability
A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Content Security Management Appliance SMA could allow an unauthenticated, remote attacker to obtain sensitive network information...
CVE-2020-3122
Technical details for CVE-2020-3122 are not publicly available in the provided documents. Monitor for updates from vendors and security feeds.
CVE-2021-1425
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance SMA could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability exists because confidential information is bei...
CVE-2021-1447
A vulnerability in the user account management system of Cisco AsyncOS for Cisco Content Security Management Appliance SMA could allow an authenticated, local attacker to elevate their privileges to root. This vulnerability is due to a procedural flaw in the password generation algorithm. An...
Cisco Content Security Management Appliance 安全漏洞
Cisco Content Security Management Appliance SMA is a set of content security management equipment from Cisco Cisco. The appliance is primarily used to manage all policies, reports, audit information, etc. for email and web security appliances. A security vulnerability exists in the Cisco Content...
PT-2021-2270 · Cisco · Cisco Asyncos
Name of the Vulnerable Software and Affected Versions: Cisco AsyncOS Software for Cisco Content Security Management Appliance SMA affected versions not specified Description: A vulnerability in the web-based management interface could allow an authenticated, remote attacker to access sensitive...
Cisco Content Security Management Appliance Information Disclosure (cisco-sa-esa-wsa-sma-info-RHp44vAC)
According to its self-reported version, Cisco Content Security Management Appliance SMA is affected by a vulnerability in the authentication for the general purpose APIs due to the absence of a secure authentication token requirement when authenticating to the general purpose API. An...
Input validation
A vulnerability in the API Framework of Cisco AsyncOS for Cisco Web Security Appliance WSA and Cisco Content Security Management Appliance SMA could allow an unauthenticated, remote attacker to inject crafted HTTP headers in the web server's response. The vulnerability is due to insufficient...
Cisco Content Security Management Appliance (SMA) Information Disclosure (cisco-sa-sma-wsa-esa-info-dis-vsvPzOHP)
According to its self-reported version, the Cisco Content Security Management Appliance SMA is affected by an information disclosure vulnerability in the web-based management interface of Cisco AsyncOS software due to the use of an insecure method to mask certain passwords on the web-based...
CVE-2020-3370 Cisco Content Security Management Appliance Filter Bypass Vulnerability
A vulnerability in URL filtering of Cisco Content Security Management Appliance SMA could allow an unauthenticated, remote attacker to bypass URL filtering on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a...
Cisco Content Security Management Appliance Open Redirect Multiple Vulnerabilities (cisco-sa-sma-opn-rdrct-yPPMdsMQ)
According to its self-reported version, Cisco Content Security Management Appliance SMA is affected by multiple vulnerabilities in the web-based GUI due to improper input validation of the parameters of an HTTP request. An unauthenticated, remote attacker can exploit these, by intercepting an HTT...
Cisco Content Security Management Appliance Open Redirect Vulnerabilities
Multiple vulnerabilities in the web-based GUI of Cisco AsyncOS Software for Cisco Content Security Management Appliance SMA could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. The vulnerabilities are due to improper input validation of the parameters of an...
The vulnerability of the API Framework web server component of Cisco Web Security Appliance (WSA) and the Cisco Content Security Management Appliance (SMA) security management device allows a perpetrator to inject arbitrary HTTP headers into responses.
The vulnerability of the API Framework web server component of Cisco Web Security Appliance WSA and the Cisco Content Security Management Appliance SMA security management device is related to the failure to handle CRLF sequences in HTTP headers. Exploiting this vulnerability allows a malicious...
Cisco Content Security Virtual Appliance M380 IronPort Remote Cross Site Host Modification Exploit
// // // Disclaimer: // This or previous programs are for Educational purpose ONLY. Do not use it without permission. // The usual disclaimer applies, especially the fact that Todor Donev is not liable for any damages // caused by direct or indirect use of the information or functionality provide...