2 matches found
Cisco Web Security Appliance HTTPS Certificate Denial of Service Vulnerability
According to its self-reported version, Cisco Web Security Appliance WSA is affected by a denial of service vulnerability in the HTTPS decryption feature of WSA due to insufficient validation. An unauthenticated, remote attacker can exploit this, by installing a malformed certificate in a web...
CVE-2019-1886
The CVE-2019-1886 entry describes a DoS in Cisco Web Security Appliance (WSA) due to insufficient validation of SSL server certificates in the HTTPS decryption feature. Attackers can remotely exploit by presenting a malformed certificate to a web server, sent through WSA, to trigger an unexpected...