4 matches found
CVE-2022-20798
creationtimestamp| type| source ---|---|--- 2022-06-16 09:37:08+00:00| seen| https://t.me/codebysec/6085 2022-06-16 19:50:03+00:00| seen| https://t.me/truesecator/3068 2022-06-18 10:10:18+00:00| seen| https://t.me/itsecnews/843...
Critical Flaw in Cisco Secure Email and Web Manager Lets Attackers Bypass Authentication
Cisco on Wednesday rolled out fixes to address a critical security flaw affecting Email Security Appliance ESA and Secure Email and Web Manager that could be exploited by an unauthenticated, remote attacker to sidestep authentication. Assigned the CVE identifier CVE-2022-20798, the bypass...
CVE-2022-20798 Cisco Email Security Appliance and Cisco Secure Email and Web Manager External Authentication Bypass Vulnerability
A vulnerability in the external authentication functionality of Cisco Secure Email and Web Manager, formerly known as Cisco Security Management Appliance SMA, and Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to bypass authentication and log in to the web...
CVE-2022-20798
Cisco’s CVE-2022-20798 vulnerability affects Cisco Secure Email and Web Manager (SMA) and Cisco Email Security Appliance (ESA). The flaw arises from improper authentication checks when external authentication uses LDAP, allowing an unauthenticated, remote attacker to bypass login and access the w...