Asyncos@14.0.0-698 Security Vulnerabilities and Issues — Asyncos@14.0.0-698 CVE List

Lucene search

CiscoAsyncos14.0.0-698

4 matches found

CVE•added 2024/05/15 6:15 p.m.•74 views

CVE-2024-20392

A vulnerability in the web-based management API of Cisco AsyncOS Software for Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack. This vulnerability is due to insufficient input validation of some parameters that are passed to the...

6.1CVSS6.1AI score0.00174EPSS

CVE•added 2024/05/15 6:15 p.m.•50 views

CVE-2024-20257

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email Gateway could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface.r This vulnerability is due to insufficient validation of user input. An attacker cou...

4.8CVSS6.6AI score0.00092EPSS

CVE•added 2024/07/17 5:15 p.m.•49 views

CVE-2024-20429

A vulnerability in the web-based management interface of Cisco AsyncOS for Secure Email Gateway could allow an authenticated, remote attacker to execute arbitrary system commands on an affected device. This vulnerability is due to insufficient input validation in certain portions of the web-based m...

7.2CVSS7.7AI score0.00133EPSS

CVE•added 2024/11/06 5:15 p.m.•42 views

CVE-2024-20504

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface....

5.4CVSS5.2AI score0.00078EPSS