Content Security Management Appliance@- Security Vulnerabilities and Issues — Content Security Management Appliance@- CVE List

Lucene search

CiscoContent Security Management Appliance-

3 matches found

CVE•added 2014/05/20 11:13 a.m.•48 views

CVE-2014-2195

Cisco AsyncOS on Email Security Appliance (ESA) and Content Security Management Appliance (SMA) devices, when Active Directory is enabled, does not properly handle group names, which allows remote attackers to gain role privileges by leveraging group-name similarity, aka Bug ID CSCum86085.

4.3CVSS7.2AI score0.00321EPSS

CVE•added 2014/03/21 1:4 a.m.•41 views

CVE-2014-2119

The End User Safelist/Blocklist (aka SLBL) service in Cisco AsyncOS Software for Email Security Appliance (ESA) before 7.6.3-023 and 8.x before 8.0.1-023 and Cisco Content Security Management Appliance (SMA) before 7.9.1-110 and 8.x before 8.1.1-013 allows remote authenticated users to execute arbi...

8.5CVSS7.6AI score0.01372EPSS

CVE•added 2014/06/10 11:19 a.m.•37 views

CVE-2014-3289

Cross-site scripting (XSS) vulnerability in the web management interface in Cisco AsyncOS on the Email Security Appliance (ESA) 8.0, Web Security Appliance (WSA) 8.0 (.5 Hot Patch 1) and earlier, and Content Security Management Appliance (SMA) 8.3 and earlier allows remote attackers to inject arbit...

4.3CVSS5.6AI score0.0066EPSS