Lucene search
K
CiscoWeb Security Appliance

65 matches found

CVE
CVE
added 2016/06/08 2:0 p.m.260 views

CVE-2016-1405

ClamAV libclamav vulnerability (CVE-2016-1405) allows remote attackers to cause a denial of service via a crafted document, affecting Cisco ESA appliances (before 9.7.0-125) and WSA appliances (before 9.0.1-135 and 9.1.x before 9.1.1-041). Root cause: parsing defect in libclamav leading to AMP pr...

7.5CVSS7.1AI score0.03406EPSS
CVE
CVE
added 2023/02/16 3:24 p.m.178 views

CVE-2023-20032

CVE-2023-20032 affects ClamAV HFS+ parser: vulnerable in versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier due to a missing buffer size check that can cause a heap buffer overflow. An unauthenticated, remote attacker could trigger arbitrary code execution with the ClamAV sc...

9.8CVSS9.6AI score0.29314EPSS
CVE
CVE
added 2022/04/06 6:11 p.m.130 views

CVE-2022-20784

CVE-2022-20784 is a Cisco Web Security Appliance (WSA) filter-bypass vulnerability in the WBRS engine of Cisco AsyncOS. The issue stems from incorrect handling of certain URL character combinations, allowing an unauthenticated, remote attacker to bypass web request policies and access content blo...

5.8CVSS5.5AI score0.00896EPSS
CVE
CVE
added 2023/06/28 12:0 a.m.110 views

CVE-2023-20120

Cisco CVE-2023-20120 covers multiple XSS vulnerabilities in the web-based management interfaces of Cisco AsyncOS Software used by Cisco Secure Email and Web Manager, Cisco Secure Email Gateway (ESA), and Cisco Secure Web Appliance (WSA). The issues arise from insufficient input validation in the ...

6.1CVSS5.8AI score0.00473EPSS
CVE
CVE
added 2019/07/04 7:50 p.m.102 views

CVE-2019-1886

The CVE-2019-1886 entry describes a DoS in Cisco Web Security Appliance (WSA) due to insufficient validation of SSL server certificates in the HTTPS decryption feature. Attackers can remotely exploit by presenting a malformed certificate to a web server, sent through WSA, to trigger an unexpected...

8.6CVSS8.5AI score0.01347EPSS
CVE
CVE
added 2019/07/04 7:50 p.m.95 views

CVE-2019-1884

The CVE-2019-1884 issue affects Cisco Web Security Appliance (WSA) AsyncOS Web Proxy functionality. A vulnerability in input validation for certain HTTP/HTTPS request fields could allow an authenticated, remote attacker to cause the device to stop processing traffic, producing a DoS condition. Th...

7.7CVSS6.7AI score0.01513EPSS
CVE
CVE
added 2020/03/04 6:40 p.m.95 views

CVE-2020-3164

Summary: CVE-2020-3164 is a GUI Denial of Service vulnerability in Cisco AsyncOS web interfaces for the Cisco Email Security Appliance (ESA), Web Security Appliance (WSA), and Content Security Management Appliance (SMA). It stems from improper validation of specific HTTP request headers, allowing...

5.3CVSS5.3AI score0.01281EPSS
CVE
CVE
added 2019/11/26 3:11 a.m.85 views

CVE-2019-15956

The CVE-2019-15956 entry concerns Cisco Web Security Appliance (WSA) AsyncOS Web Management Interface vulnerability. Connected sources confirm an authenticated, remote attacker can exploit improper authorization on a specific URL to perform an unauthorized device reset. The documented impacts inc...

8.8CVSS8.4AI score0.00981EPSS
CVE
CVE
added 2020/09/23 12:27 a.m.85 views

CVE-2019-15969

CVE-2019-15969 : Cisco Web Security Appliance (WSA) web UI has an input validation flaw allowing unauthenticated remote XSS via a crafted link. Impact is execution of script/HTML in the interface, potentially exposing browser-based data. Root cause: insufficient input validation in the management...

6.1CVSS6.1AI score0.00801EPSS
CVE
CVE
added 2021/07/08 6:35 p.m.82 views

CVE-2021-1359

CVE-2021-1359 affects Cisco AsyncOS Web Security Appliance (WSA) in the configuration management path. The issue arises from insufficient validation of user-supplied XML input in the web interface, allowing an authenticated, remote attacker with a valid account to upload crafted XML configuration...

9CVSS8AI score0.01879EPSS
CVE
CVE
added 2020/09/23 12:25 a.m.78 views

CVE-2020-3117

CVE-2020-3117 affects Cisco AsyncOS API Framework in Cisco Web Security Appliance (WSA) and Cisco Content Security Management Appliance (SMA). The vulnerability allows an unauthenticated, remote attacker to inject arbitrary HTTP headers into HTTP responses due to insufficient validation of user i...

4.7CVSS5AI score0.00929EPSS
CVE
CVE
added 2017/07/25 7:0 p.m.75 views

CVE-2017-6749

CVE-2017-6749 describes a stored cross-site scripting (XSS) vulnerability in the Cisco Web Security Appliance (WSA) web-based management interface. An authenticated, remote attacker can exploit this by convincing a user to follow a crafted link, triggering script execution in the user’s browser s...

5.4CVSS5.1AI score0.01228EPSS
CVE
CVE
added 2017/07/25 7:0 p.m.75 views

CVE-2017-6751

Cisco Web Security Appliance (WSA) is affected (virtual and hardware). The issue is a web proxy bypass where traffic forwarded from the web proxy interface to the administrative management interface is not denied, enabling an unauthenticated remote attacker to reach the admin interface (Access Co...

7.5CVSS7.5AI score0.01963EPSS
CVE
CVE
added 2021/05/06 12:41 p.m.75 views

CVE-2021-1490

CVE-2021-1490 : Cisco Web Security Appliance (WSA) uses Cisco AsyncOS with a web-based management interface vulnerable to cross-site scripting (XSS) due to improper validation of user-supplied input. An unauthenticated, remote attacker can lure a user to upload a crafted file containing a malicio...

6.1CVSS5.5AI score0.00704EPSS
CVE
CVE
added 2021/01/20 7:35 p.m.74 views

CVE-2021-1129

The CVE-2021-1129 vulnerability affects Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security Appliance (WSA). Root cause: missing requirement for a secure authentication token when accessing the general purpose APIs, allowing an unauthent...

5.3CVSS5.1AI score0.01142EPSS
CVE
CVE
added 2016/12/14 12:37 a.m.73 views

CVE-2016-1411

CVE-2016-1411 affects Cisco AsyncOS Software used on Email Security Appliances (ESA), Web Security Appliances (WSA), and Content Management Security Appliances (SMA). The issue stems from lack of certificate validation during HTTPS updates, allowing an unauthenticated attacker to perform a man-in...

5.9CVSS5.8AI score0.01121EPSS
CVE
CVE
added 2023/06/28 12:0 a.m.73 views

CVE-2023-20119

CVE-2023-20119 affects Cisco AsyncOS Software for Cisco Secure Email and Web Manager (formerly Content Security Management Appliance). The web-based management interface is vulnerable to cross-site scripting (XSS) due to insufficient input validation. An unauthenticated, remote attacker can entic...

6.1CVSS6AI score0.00508EPSS
CVE
CVE
added 2015/11/06 2:0 a.m.72 views

CVE-2015-6321

Cisco AsyncOS contains a denial-of-service vulnerability (CVE-2015-6321) in the network stack triggered by a flood of TCP packets, leading to memory exhaustion and disruption of new TCP connections. Affected products include Cisco Email Security Appliance (ESA) on various 8.5.x–9.6.x branches, Ci...

7.8CVSS6.6AI score0.02764EPSS
CVE
CVE
added 2018/06/07 12:0 p.m.72 views

CVE-2018-0353

CVE-2018-0353 affects Cisco Web Security Appliance (WSA) AsyncOS, where a vulnerability in the L4 Traffic Monitor (L4TM) can be exploited by unauthenticated remote attackers to bypass L4TM protections. The issue stems from a change in the underlying OS used to monitor traffic, and is applicable t...

7.5CVSS7.5AI score0.03889EPSS
CVE
CVE
added 2015/11/06 2:0 a.m.71 views

CVE-2015-6293

Cisco Web Security Appliance (WSA) AsyncOS is affected by CVE-2015-6293 due to a flaw in the file-range request handling. The issue allows unauthenticated remote attackers to cause memory exhaustion and denial of service by opening multiple connections that request file ranges. Affected versions ...

7.8CVSS6.9AI score0.01925EPSS
CVE
CVE
added 2017/08/17 8:0 p.m.70 views

CVE-2017-6783

CVE-2017-6783 affects Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA). The root cause is that these devices do not protect confidential information at rest in SNMP poll responses, enabling an authenticated, remote attacker to dis...

4.3CVSS4.4AI score0.01339EPSS
CVE
CVE
added 2019/05/03 4:30 p.m.70 views

CVE-2019-1817

CVE-2019-1817 describes a DoS in Cisco Web Security Appliance (AsyncOS) web proxy due to improper validation of HTTP/HTTPS requests. An unauthenticated remote attacker can send malformed requests to trigger a restart of the web proxy process, causing a temporary DoS. The affected product is Cisco...

8.6CVSS7.7AI score0.01772EPSS
CVE
CVE
added 2021/06/16 5:45 p.m.69 views

CVE-2021-1566

CVE-2021-1566 affects Cisco Email Security Appliance (ESA) and Cisco Web Security Appliance (WSA) due to improper TLS certificate validation in the AMP for Endpoints integration (AsyncOS). A remote, unauthenticated attacker could perform a man-in-the-middle to intercept traffic between the device...

7.4CVSS7.2AI score0.0067EPSS
CVE
CVE
added 2013/07/02 1:0 a.m.68 views

CVE-2013-3395

CVE-2013-3395 describes a CSRF flaw in the web framework of Cisco IronPort products (Web Security Appliance, Email Security Appliance, Content Security Management Appliance). The vulnerability allows remote attackers to hijack the authentication of arbitrary users by inducing them to perform unwa...

6.8CVSS7.5AI score0.00576EPSS
CVE
CVE
added 2023/06/28 12:0 a.m.67 views

CVE-2023-20028

Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway (ESA) and Cisco Secure Web Appliance (WSA) web-based management interfaces are affected by cross-site scripting vulnerabilities due to insufficient input validation. The issues enable remote attackers to del...

5.4CVSS5.5AI score0.00473EPSS
CVE
CVE
added 2017/03/17 10:0 p.m.66 views

CVE-2017-3870

CVE-2017-3870 is a vulnerability in the URL filtering feature of Cisco AsyncOS for Cisco Web Security Appliance (WSA) that could allow an unauthenticated, remote attacker to bypass a configured URL filter. Affected: all releases prior to the first fixed release of Cisco AsyncOS for WSA, on both v...

5.8CVSS5.7AI score0.01525EPSS
CVE
CVE
added 2021/05/06 12:51 p.m.66 views

CVE-2021-1516

CVE-2021-1516 affects Cisco AsyncOS Software on the Cisco Content Security Management Appliance (SMA), Email Security Appliance (ESA), and Web Security Appliance (WSA). Root cause: confidential information is included in HTTP requests exchanged between the user and the device, allowing an authent...

6.5CVSS5.2AI score0.01156EPSS
CVE
CVE
added 2015/12/01 11:0 a.m.63 views

CVE-2015-6386

The Cisco Web Security Appliance (WSA) passthrough FTP feature is affected. A vulnerability in WSA software versions 8.0.7-142 and 8.5.1-021 can allow an unauthenticated, remote attacker to cause a denial of service via FTP sessions where the control connection is closed after data transfer (Bug ...

5CVSS6.9AI score0.01744EPSS
CVE
CVE
added 2017/07/25 7:0 p.m.63 views

CVE-2017-6746

The CVE-2017-6746 entry describes a command-injection and root-privilege escalation vulnerability in the web interface of Cisco Web Security Appliance (WSA) running Cisco AsyncOS. Impact requires an authenticated administrator, and the flaw allows remote command execution with root privileges via...

9CVSS7.2AI score0.04397EPSS
CVE
CVE
added 2015/11/06 11:0 a.m.62 views

CVE-2015-6292

Cisco AsyncOS on Web Security Appliance (WSA) is affected by CVE-2015-6292 due to a proxy-cache memory handling fault. The vulnerability allows unauthenticated remote attackers to cause memory exhaustion and DoS by opening multiple proxy connections; versions affected include 8.0.x before 8.0.7-1...

7.8CVSS6.9AI score0.01925EPSS
CVE
CVE
added 2019/05/03 4:25 p.m.62 views

CVE-2019-1816

The CVE-2019-1816 issue affects Cisco Web Security Appliance (WSA). Affected component: log subscription subsystem; root cause is insufficient validation of user-supplied input on web and CLI interfaces. Exploitation scenario: an authenticated, local attacker can inject scripts/commands within th...

7.8CVSS6.9AI score0.0064EPSS
CVE
CVE
added 2016/12/14 12:37 a.m.61 views

CVE-2016-9212

Cisco Web Security Appliance (WSA) Drop Decrypt Policy Bypass (CVE-2016-9212) is caused by incomplete HTTP header input validation in the Decrypt for End-User Notification configuration. Under HTTPS decryption, an unauthenticated remote attacker could connect to a blocked HTTPS website despite po...

7.5CVSS7.5AI score0.02786EPSS
CVE
CVE
added 2019/02/08 6:0 p.m.61 views

CVE-2019-1672

CVE-2019-1672 describes a vulnerability in the Cisco Web Security Appliance (WSA) where the Decryption Policy Default Action handling allows an unauthenticated, remote attacker to bypass a configured drop policy and permit SSL traffic that should have been denied. The root cause is the incorrect ...

5.8CVSS5.8AI score0.01645EPSS
CVE
CVE
added 2015/02/21 11:0 a.m.58 views

CVE-2015-0624

Cisco AsyncOS web framework on ESA, SMA, and WSA is vulnerable to an HTTP header injection flaw due to insufficient validation of header values (notably Host/X-Forwarded-Host). A remote attacker can trigger redirects to arbitrary URLs by sending crafted HTTP headers, potentially aided by publicly...

4.3CVSS6.8AI score0.02157EPSS
CVE
CVE
added 2016/10/05 5:0 p.m.58 views

CVE-2016-6416

The CVE-2016-6416 issue affects Cisco AsyncOS on ESA, WSA, and SMA devices. The local FTP service could be flooded by remote attackers, causing DoS due to lack of throttling. Affected versions include ESA 9.6.0-000 through 9.9.6-026, WSA 9.0.0-162 through 9.5.0-444, and SMA in the same family. Ro...

5.9CVSS5.7AI score0.0202EPSS
CVE
CVE
added 2015/07/29 1:0 a.m.57 views

CVE-2015-4288

CVE-2015-4288 affects Cisco Web Security Appliance (WSA) 8.5.0-000, Email Security Appliance (ESA) 8.5.7-042, and Content Security Management Appliance (SMA) 8.3.6-048. The LDAP server in these devices does not verify X.509 certificates from SSL servers, enabling a man-in-the-middle attacker to s...

4.3CVSS6.1AI score0.00477EPSS
CVE
CVE
added 2018/08/15 8:0 p.m.56 views

CVE-2018-0410

The CVE-2018-0410 issue affects Cisco Web Security Appliance (WSA) AsyncOS web proxy. It describes a memory-exhaustion DoS caused by improper management of memory resources for TCP connections to the data interface over IPv4/IPv6, exploitable by establishing a high number of TCP connections. The ...

8.6CVSS8.4AI score0.04119EPSS
CVE
CVE
added 2015/04/15 10:0 a.m.55 views

CVE-2015-0693

CVE-2015-0693 affects Cisco Web Security Appliance (WSA) devices running 8.5.0-ise-147, where improper handling of the pickle module during tunnel-status checks allows an authenticated, local attacker to execute arbitrary Python code and elevate privileges via a crafted pickle file (Bug CSCut3925...

7.2CVSS7.6AI score0.0038EPSS
CVE
CVE
added 2018/07/16 5:0 p.m.55 views

CVE-2018-0366

CVE-2018-0366 affects Cisco Web Security Appliance (WSA) and concerns a reflected cross-site scripting (XSS) vulnerability in the web-based management interface caused by insufficient input validation. An unauthenticated, remote attacker could lure a user to click a crafted link, resulting in arb...

6.1CVSS6AI score0.01783EPSS
CVE
CVE
added 2016/07/02 2:0 p.m.54 views

CVE-2016-1440

CVE-2016-1440 affects Cisco Web Security Appliance (WSA) prior to some fixed software versions where the proxy’s native pass-through FTP functionality can be abused to cause a partial DoS via high CPU usage. The root cause is the FTP client terminating the FTP control connection improperly after ...

5.3CVSS5.4AI score0.01251EPSS
CVE
CVE
added 2017/07/25 7:0 p.m.53 views

CVE-2017-6750

Cisco Web Security Appliance AsyncOS is affected by CVE-2017-6750 due to a default/static password on a user account. This permits an unauthenticated remote attacker to log in to the web GUI with elevated access, or an unauthenticated/remote attacker to authenticate areas of the GUI, as described...

7.5CVSS7.5AI score0.02652EPSS
CVE
CVE
added 2018/08/15 8:0 p.m.53 views

CVE-2018-0428

CVE-2018-0428 is a Cisco Web Security Appliance (WSA) elevation-of-privilege vulnerability in the account management subsystem. An authenticated local attacker with valid admin credentials can bypass access controls to elevate to root, escape the CLI subshell, and run system-level commands. The r...

7.2CVSS6.6AI score0.00436EPSS
CVE
CVE
added 2013/10/24 10:0 a.m.52 views

CVE-2013-5537

The CVE-2013-5537 issue affects Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA). The web framework does not properly manage HTTP/HTTPS session state, allowing an unauthenticated remote attacker to cause a denial of service (manag...

7.8CVSS7AI score0.01328EPSS
CVE
CVE
added 2015/02/19 12:0 a.m.52 views

CVE-2015-0623

CVE-2015-0623 affects Cisco Web Security Appliance (WSA) Administrator report page. The issue is due to insufficient input validation, enabling unauthenticated remote XSS via unspecified vectors. Impact can include arbitrary script execution, cookie theft, and session hijacking on affected users....

4.3CVSS5.9AI score0.00942EPSS
CVE
CVE
added 2015/07/29 1:0 a.m.52 views

CVE-2015-0732

Summary: CVE-2015-0732 is a cross-site scripting (XSS) vulnerability affecting Cisco AsyncOS on Web Security Appliance (WSA) 9.0.0-193; Email Security Appliance (ESA) 8.5.6-113, 9.1.0-032, 9.1.1-000, 9.6.0-000; and Content Security Management Appliance (SMA) 9.1.0-033. The issue arises from insuf...

4.3CVSS5.9AI score0.01786EPSS
CVE
CVE
added 2015/02/20 2:0 a.m.51 views

CVE-2015-0628

The CVE-2015-0628 issue affects Cisco Web Security Appliance (WSA) where the proxy engine fails to properly handle malformed HTTP methods, enabling remote attackers to bypass proxying restrictions. This is a vulnerability in the proxy component that could permit unauthorized proxy traffic if an a...

5CVSS7AI score0.01246EPSS
CVE
CVE
added 2015/05/17 1:0 a.m.51 views

CVE-2015-0738

Cisco Web Security Appliance (WSA) Web Tracking Report page (version 8.5.0-497) contains a cross-site scripting (XSS) vulnerability due to improper validation of user-supplied input on a field. An unauthenticated, remote attacker could inject arbitrary script in the vulnerable page, potentially a...

4.3CVSS6AI score0.01546EPSS
CVE
CVE
added 2015/06/20 2:0 p.m.51 views

CVE-2015-4198

Cisco Web Security Appliance (WSA) WEB FRAMEWORK HTTP HEADER INJECTION: An unauthenticated remote attacker could craft an HTTP header to inject arbitrary HTML/script into the browser via the WSA web interface. Root cause: insufficient validation of header value used in responses. Affected product...

4.3CVSS6AI score0.02162EPSS
CVE
CVE
added 2016/10/28 10:0 a.m.51 views

CVE-2016-6372

CVE-2016-6372 affects Cisco AsyncOS for Cisco ESA and WSA (MIME header handling). A vulnerability in email message and content filtering due to improper error handling of malformed MIME headers could allow an unauthenticated, remote attacker to bypass the device’s filtering, potentially allowing ...

7.5CVSS7.7AI score0.01634EPSS
CVE
CVE
added 2017/07/25 7:0 p.m.51 views

CVE-2017-6748

Cisco Web Security Appliance (WSA) CLI parser vulnerability CVE-2017-6748 enables an authenticated, local attacker with operator/administrator credentials to inject commands and elevate to root. Affected: virtual and hardware WSA platforms. Root cause: insufficient validation in the CLI parser al...

7.2CVSS6.7AI score0.00818EPSS
Total number of security vulnerabilities65