Web Security Virtual Appliance@* Security Vulnerabilities and Issues — Web Security Virtual Appliance@* CVE List

Lucene search

CiscoWeb Security Virtual Appliance*

2 matches found

CVE•added 2021/01/20 8:15 p.m.•49 views

CVE-2021-1271

A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. The vulnerability exists because t...

4.8CVSS4.9AI score0.00174EPSS

CVE•added 2014/04/02 3:58 a.m.•32 views

CVE-2014-2137

CRLF injection vulnerability in the web framework in Cisco Web Security Appliance (WSA) 7.7 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct redirection attacks via a crafted URL, aka Bug ID CSCuj61002.

4.3CVSS7AI score0.00211EPSS