13 matches found
Cisco Content Security Management Appliance 访问控制错误漏洞
Cisco Content Security Management Appliance SMA is a set of content security management equipment from Cisco Cisco. The appliance is mainly used to manage all policies, reports, audit information, etc. for e-mail and Web security devices. The Cisco Content Security Management Appliance has an...
CVE-2021-1425
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance SMA could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability exists because confidential information is bei...
Vulnerability fixed in Cisco products
Cisco has fixed a vulnerability in the following products: Cisco Adaptive Security Appliance ASA Cisco Content Security Management Appliance SMA Cisco Email Security Appliance ESA Cisco Firepower Threat Defense FTD. Cisco FXOS Cisco Web Security Appliance WSA The vulnerability potentially allows ...
Cisco Content Security Management Appliance 安全漏洞
Cisco Content Security Management Appliance SMA is a set of content security management equipment from Cisco Cisco. The appliance is primarily used to manage all policies, reports, audit information, etc. for email and web security appliances. A security vulnerability exists in the Cisco Content...
PT-2021-2270 · Cisco · Cisco Asyncos
Name of the Vulnerable Software and Affected Versions: Cisco AsyncOS Software for Cisco Content Security Management Appliance SMA affected versions not specified Description: A vulnerability in the web-based management interface could allow an authenticated, remote attacker to access sensitive...
The vulnerability of the command-line interface of the Cisco AsyncOS operating system allows a hacker to gain unauthorized access to protected information. This vulnerability is exploitable by attackers who target the Cisco Email Security Appliance for security management and the Cisco Content Security Management Appliance for content management systems.
The vulnerability of the Cisco AsyncOS command-line interface for the Cisco Email Security Appliance and the Cisco Content Security Management Appliance security management system is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker,...
CVE-2020-3117
A vulnerability in the API Framework of Cisco AsyncOS for Cisco Web Security Appliance WSA and Cisco Content Security Management Appliance SMA could allow an unauthenticated, remote attacker to inject crafted HTTP headers in the web server's response. The vulnerability is due to insufficient...
CVE-2020-3370
A vulnerability in URL filtering of Cisco Content Security Management Appliance SMA could allow an unauthenticated, remote attacker to bypass URL filtering on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a...
CVE-2020-3164
A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Email Security Appliance ESA, Cisco Web Security Appliance WSA, and Cisco Content Security Management Appliance SMA could allow an unauthenticated remote attacker to cause high CPU usage on an affected device,...
Cisco Content Security Management Appliance Cross-Site Scripting Vulnerability
Cisco Content Security Management Appliance SMA is a set of content security management equipment from Cisco Cisco. The appliance is mainly used to manage all policies, reports, audit information, etc. for e-mail and Web security devices. A cross-site scripting vulnerability exists in the Web-bas...
SNMP polling information disclosure vulnerability in multiple Cisco products
The Cisco Web Security Appliance WSA, Email Security Appliance ESA, and Content Security Management Appliance SMA are all products of Cisco, Inc.Cisco WSA is a Web security appliance. The Cisco WSA is a Web Security Appliance, the ESA is an Email Security Appliance, and the Content SMA is a Conte...
CVE-2017-6661
A vulnerability in the web-based management interface of Cisco Email Security Appliance ESA and Cisco Content Security Management Appliance SMA could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an...
CVE-2016-6416
The FTP service in Cisco AsyncOS on Email Security Appliance ESA devices 9.6.0-000 through 9.9.6-026, Web Security Appliance WSA devices 9.0.0-162 through 9.5.0-444, and Content Security Management Appliance SMA devices allows remote attackers to cause a denial of service via a flood of FTP...