Lucene search
K

13 matches found

CNNVD
CNNVD
added 2025/03/04 12:0 a.m.3 views

Cisco Content Security Management Appliance 访问控制错误漏洞

Cisco Content Security Management Appliance SMA is a set of content security management equipment from Cisco Cisco. The appliance is mainly used to manage all policies, reports, audit information, etc. for e-mail and Web security devices. The Cisco Content Security Management Appliance has an...

5.3CVSS6.5AI score0.00359EPSS
Exploits0References4
OSV
OSV
added 2024/11/18 4:15 p.m.4 views

CVE-2021-1425

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance SMA could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability exists because confidential information is bei...

6.5CVSS5.8AI score0.00523EPSS
Exploits0References1
NCSC
NCSC
added 2021/06/02 12:0 a.m.4 views

Vulnerability fixed in Cisco products

Cisco has fixed a vulnerability in the following products: Cisco Adaptive Security Appliance ASA Cisco Content Security Management Appliance SMA Cisco Email Security Appliance ESA Cisco Firepower Threat Defense FTD. Cisco FXOS Cisco Web Security Appliance WSA The vulnerability potentially allows ...

7.5CVSS6.7AI score0.01325EPSS
Exploits0
CNNVD
CNNVD
added 2021/05/05 12:0 a.m.3 views

Cisco Content Security Management Appliance 安全漏洞

Cisco Content Security Management Appliance SMA is a set of content security management equipment from Cisco Cisco. The appliance is primarily used to manage all policies, reports, audit information, etc. for email and web security appliances. A security vulnerability exists in the Cisco Content...

7.2CVSS6.7AI score0.00275EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/03/03 12:0 a.m.4 views

PT-2021-2270 · Cisco · Cisco Asyncos

Name of the Vulnerable Software and Affected Versions: Cisco AsyncOS Software for Cisco Content Security Management Appliance SMA affected versions not specified Description: A vulnerability in the web-based management interface could allow an authenticated, remote attacker to access sensitive...

4.3CVSS6.5AI score0.00523EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2020/10/14 12:0 a.m.5 views

The vulnerability of the command-line interface of the Cisco AsyncOS operating system allows a hacker to gain unauthorized access to protected information. This vulnerability is exploitable by attackers who target the Cisco Email Security Appliance for security management and the Cisco Content Security Management Appliance for content management systems.

The vulnerability of the Cisco AsyncOS command-line interface for the Cisco Email Security Appliance and the Cisco Content Security Management Appliance security management system is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker,...

6.5CVSS6.5AI score0.00738EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2020/09/23 1:15 a.m.4 views

CVE-2020-3117

A vulnerability in the API Framework of Cisco AsyncOS for Cisco Web Security Appliance WSA and Cisco Content Security Management Appliance SMA could allow an unauthenticated, remote attacker to inject crafted HTTP headers in the web server's response. The vulnerability is due to insufficient...

4.7CVSS6.2AI score0.00929EPSS
Exploits0References1
OSV
OSV
added 2020/07/16 6:15 p.m.3 views

CVE-2020-3370

A vulnerability in URL filtering of Cisco Content Security Management Appliance SMA could allow an unauthenticated, remote attacker to bypass URL filtering on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a...

5.8CVSS5.9AI score
Exploits0References1
OSV
OSV
added 2020/03/04 7:15 p.m.4 views

CVE-2020-3164

A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Email Security Appliance ESA, Cisco Web Security Appliance WSA, and Cisco Content Security Management Appliance SMA could allow an unauthenticated remote attacker to cause high CPU usage on an affected device,...

5.3CVSS6.1AI score0.01281EPSS
Exploits0References1
CNVD
CNVD
added 2018/11/08 12:0 a.m.2 views

Cisco Content Security Management Appliance Cross-Site Scripting Vulnerability

Cisco Content Security Management Appliance SMA is a set of content security management equipment from Cisco Cisco. The appliance is mainly used to manage all policies, reports, audit information, etc. for e-mail and Web security devices. A cross-site scripting vulnerability exists in the Web-bas...

6.1CVSS5.6AI score0.01232EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/18 12:0 a.m.6 views

SNMP polling information disclosure vulnerability in multiple Cisco products

The Cisco Web Security Appliance WSA, Email Security Appliance ESA, and Content Security Management Appliance SMA are all products of Cisco, Inc.Cisco WSA is a Web security appliance. The Cisco WSA is a Web Security Appliance, the ESA is an Email Security Appliance, and the Content SMA is a Conte...

4.3CVSS4.4AI score0.01339EPSS
Exploits0References1
OSV
OSV
added 2017/06/13 6:29 a.m.5 views

CVE-2017-6661

A vulnerability in the web-based management interface of Cisco Email Security Appliance ESA and Cisco Content Security Management Appliance SMA could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an...

6.1CVSS5.7AI score0.01242EPSS
Exploits0References4
OSV
OSV
added 2016/10/05 5:59 p.m.4 views

CVE-2016-6416

The FTP service in Cisco AsyncOS on Email Security Appliance ESA devices 9.6.0-000 through 9.9.6-026, Web Security Appliance WSA devices 9.0.0-162 through 9.5.0-444, and Content Security Management Appliance SMA devices allows remote attackers to cause a denial of service via a flood of FTP...

5.9CVSS5.8AI score0.0202EPSS
Exploits0References5
Rows per page
Query Builder