Web Security Appliance Security Vulnerabilities and Issues — Web Security Appliance CVE List

Lucene search

CiscoWeb Security Appliance

3 matches found

cve•added 2018/08/15 8:29 p.m.•46 views

CVE-2018-0410

A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliances could allow an unauthenticated, remote attacker to exhaust system memory and cause a denial of service (DoS) condition on an affected system. The vulnerability exists because the affected soft...

8.6CVSS8.4AI score0.02122EPSS

cve•added 2018/08/15 8:29 p.m.•41 views

CVE-2018-0428

A vulnerability in the account management subsystem of Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to elevate privileges to root. The attacker must authenticate with valid administrator credentials. The vulnerability is due to improper implementation of access co...

7.2CVSS6.6AI score0.00131EPSS

cve•added 2018/08/01 8:29 p.m.•36 views

CVE-2018-0406

A vulnerability in the web-based management interface of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to conduct a reflected or Document Object Model based (DOM-based) cross-site scripting (XSS) attack against a user of the web-based management interface of an ...

6.1CVSS6AI score0.00196EPSS