Lucene search
K

12 matches found

hivepro
hivepro
added 2022/06/17 5:21 a.m.18 views

Attackers can bypass authentication in Cisco SMA & ESA

Threat Level Vulnerability Report For a detailed advisory, download the pdf file here Summary An attacker can login into a web management interface of an affected system to perform bypass authentication remotely...

5.1AI score
Exploits0
Cisco
Cisco
added 2022/02/16 4:0 p.m.85 views

Cisco Email Security Appliance DNS Verification Denial of Service Vulnerability

A vulnerability in the DNS-based Authentication of Named Entities DANE email verification component of Cisco AsyncOS Software for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability...

7.5CVSS7.6AI score0.01833EPSS
Exploits0References1
OSV
OSV
added 2021/01/20 8:15 p.m.5 views

CVE-2021-1129

A vulnerability in the authentication for the general purpose APIs implementation of Cisco Email Security Appliance ESA, Cisco Content Security Management Appliance SMA, and Cisco Web Security Appliance WSA could allow an unauthenticated, remote attacker to access general system information and...

5.3CVSS6.1AI score
Exploits0References1
NVD
NVD
added 2020/09/23 1:15 a.m.17 views

CVE-2020-3133

A vulnerability in the email message scanning of Cisco AsyncOS Software for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to bypass configured filters on the device. The vulnerability is due to improper validation of incoming emails. An attacker could exploit...

7.5CVSS0.01378EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/02/19 7:16 p.m.11 views

CVE-2020-3132 Cisco Email Security Appliance Shortened URL Denial of Service Vulnerability

A vulnerability in the email message scanning feature of Cisco AsyncOS Software for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to cause a temporary denial of service DoS condition on an affected device. The vulnerability is due to inadequate parsing...

6.8CVSS7.2AI score0.01508EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/07/06 1:30 a.m.27 views

CVE-2019-1933 Cisco Email Security Appliance Content Filter Bypass Vulnerability

A vulnerability in the email message scanning of Cisco AsyncOS Software for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to bypass configured filters on the device. The vulnerability is due to improper input validation of certain email fields. An attacker cou...

5.8CVSS7.4AI score0.0124EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2019/07/06 1:25 a.m.11 views

CVE-2019-1921 Cisco Email Security Appliance Content Filter Bypass Vulnerability

A vulnerability in the attachment scanning of Cisco AsyncOS Software for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to bypass configured content filters on the device. The vulnerability is due to improper input validation of the email body. An attacker coul...

5.8CVSS7.3AI score0.01413EPSS
Exploits0References1
Cisco
Cisco
added 2017/09/06 4:0 p.m.45 views

Cisco Email Security Appliance Malformed EML Attachment Bypass Vulnerability

A vulnerability in the malware detection functionality within Advanced Malware Protection AMP of Cisco AsyncOS Software for Cisco Email Security Appliances ESAs could allow an unauthenticated, remote attacker to cause an email attachment containing malware to be delivered to the end user. The...

5.8CVSS5.7AI score0.01638EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/02/16 12:0 a.m.24 views

Cisco AsyncOS Software for Cisco ESA Filtering Bypass Vulnerability

A vulnerability in the Multipurpose Internet Mail Extensions MIME scanner of Cisco AsyncOS Software for Cisco Email Security Appliances ESA could allow an unauthenticated, remote attacker to bypass configured user filters on the device. SPDX-FileCopyrightText: 2017 Greenbone AG Some text...

5.8CVSS5.8AI score0.01935EPSS
Exploits0References1
Prion
Prion
added 2016/10/28 10:59 a.m.17 views

Design/Logic Flaw

A vulnerability in the email message and content filtering for malformed Multipurpose Internet Mail Extensions MIME headers of Cisco AsyncOS Software for Cisco Email Security Appliances ESA and Web Security Appliances WSA could allow an unauthenticated, remote attacker to bypass the filtering...

5CVSS7.4AI score0.01634EPSS
Exploits0References4Affected Software3
OpenVAS
OpenVAS
added 2016/10/27 12:0 a.m.25 views

Cisco Email Security Appliance MIME Header Bypass Vulnerability

A vulnerability in the email message and content filtering for malformed Multipurpose Internet Mail Extensions MIME headers of Cisco AsyncOS Software for Cisco Email Security Appliances ESA and Web Security Appliances WSA could allow an unauthenticated, remote attacker to bypass the filtering...

7.5CVSS7.7AI score0.01634EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/06/27 12:0 a.m.21 views

Cisco Email Security Appliance .zip File Scanning Security Bypass Vulnerability

A vulnerability in the anti-spam filter of the Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to bypass anti-spam filtering functionality on an affected system. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a reference...

7.5CVSS7.7AI score0.01219EPSS
Exploits0References1
Rows per page
Query Builder