Email Security Appliance Security Vulnerabilities and Issues — Email Security Appliance CVE List

Lucene search

CiscoEmail Security Appliance

2 matches found

CVE•added 2015/07/10 7:59 p.m.•55 views

CVE-2015-4236

Cisco AsyncOS on Email Security Appliance (ESA) devices with software 8.5.6-073, 8.5.6-074, and 9.0.0-461, when clustering is enabled, allows remote attackers to cause a denial of service (clustering and SSH outage) via a packet flood, aka Bug IDs CSCur13704 and CSCuq05636.

4.3CVSS6.9AI score0.00603EPSS

CVE•added 2015/07/29 1:59 a.m.•45 views

CVE-2015-4288

The LDAP implementation on the Cisco Web Security Appliance (WSA) 8.5.0-000, Email Security Appliance (ESA) 8.5.7-042, and Content Security Management Appliance (SMA) 8.3.6-048 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain ...

4.3CVSS6.1AI score0.00137EPSS