Asyncos@14.1.0-047 Security Vulnerabilities and Issues — Asyncos@14.1.0-047 CVE List

Lucene search

CiscoAsyncos14.1.0-047

4 matches found

CVE•added 2024/11/15 4:15 p.m.•69 views

CVE-2022-20871

A vulnerability in the web management interface of Cisco AsyncOS for Cisco Secure Web Appliance, formerly Cisco Web Security Appliance (WSA), could allow an authenticated, remote attacker to perform a command injection and elevate privileges to root.This vulnerability is due to insufficient validat...

8.8CVSS7.1AI score0.00084EPSS

CVE•added 2025/02/05 5:15 p.m.•63 views

CVE-2025-20184

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Web Appliance could allow an authenticated, remote attacker to perform command injection attacks against an affected device. The attacker must authenticate with valid admi...

7.2CVSS7.6AI score0.00128EPSS

CVE•added 2025/02/05 5:15 p.m.•52 views

CVE-2025-20183

A vulnerability in a policy-based Cisco Application Visibility and Control (AVC) implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to evade the antivirus scanner and download a malicious file onto an endpoint. The vulnerability i...

5.8CVSS5.7AI score0.00092EPSS

CVE•added 2024/11/06 5:15 p.m.•40 views

CVE-2024-20504

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface....

5.4CVSS5.2AI score0.00074EPSS