Email Security Appliance Firmware Security Vulnerabilities and Issues — Email Security Appliance Firmware CVE List

Lucene search

CiscoEmail Security Appliance Firmware

3 matches found

CVE•added 2013/07/02 3:43 a.m.•56 views

CVE-2013-3395

Cross-site request forgery (CSRF) vulnerability in the web framework on Cisco IronPort Web Security Appliance (WSA) devices, Email Security Appliance (ESA) devices, and Content Security Management Appliance (SMA) devices allows remote attackers to hijack the authentication of arbitrary users, aka B...

6.8CVSS7.5AI score0.00122EPSS

CVE•added 2018/02/08 7:29 a.m.•45 views

CVE-2018-0140

A vulnerability in the spam quarantine of Cisco Email Security Appliance and Cisco Content Security Management Appliance could allow an authenticated, remote attacker to download any message from the spam quarantine by modifying browser string information. The vulnerability is due to a lack of veri...

6.5CVSS6.3AI score0.00488EPSS

CVE•added 2015/10/02 3:59 p.m.•40 views

CVE-2015-6309

Cisco Email Security Appliance (ESA) 8.5.6-106 and 9.6.0-042 allows remote authenticated users to cause a denial of service (file-descriptor consumption and device reload) via crafted HTTP requests, aka Bug ID CSCuw32211.

6.8CVSS6.5AI score0.00309EPSS