Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco cloud web security vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2015-0689
Cisco Cloud Web Security prior to 3.0.1.7 allows remote malicious users to bypass intended filtering protection mechanisms by leveraging improper handling of HTTP methods, aka Bug ID CSCut69743.
Cisco Cloud Web Security
4.3
CVSSv2
CVE-2015-0674
Cross-site scripting (XSS) vulnerability in the Alert Service of Cisco Cloud Web Security base revision allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters.
Cisco Cloud Web Security -
4
CVSSv2
CVE-2020-3154
A vulnerability in the web UI of Cisco Cloud Web Security (CWS) could allow an authenticated, remote malicious user to execute arbitrary SQL queries. The vulnerability exists because the web-based management interface improperly validates SQL values. An authenticated attacker cou...
Cisco Cloud Web Security 5.2\\(0\\)
1 Article
5
CVSSv2
CVE-2020-3164
A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated remote malicious user to cause high CPU usage ...
Cisco Cloud Email Security
Cisco Content Security Management Appliance
Cisco Email Security Appliance
Cisco Web Security Appliance
7.5
CVSSv2
CVE-2022-20738
A vulnerability in the Cisco Umbrella Secure Web Gateway service could allow an unauthenticated, remote malicious user to bypass the file inspection feature. This vulnerability is due to insufficient restrictions in the file inspection feature. An attacker could exploit this vuln...
Cisco Umbrella Secure Web Gateway -
NA
CVE-2023-20104
A vulnerability in the file upload functionality of Cisco Webex App for Web could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied ...
Cisco Webex Teams -
2.7
CVSSv2
CVE-2022-20805
A vulnerability in the automatic decryption process in Cisco Umbrella Secure Web Gateway (SWG) could allow an authenticated, adjacent malicious user to bypass the SSL decryption and content filtering policies on an affected system. This vulnerability is due to how the decryption ...
Cisco Umbrella Secure Web Gateway
NA
CVE-2020-26067
A vulnerability in the web-based interface of Cisco Webex Teams could allow an authenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper validation of usernames. An attacker could exploit this vulnerability by creating an account...
NA
CVE-2023-20132
Multiple vulnerabilities in the web interface of Cisco Webex Meetings could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack or upload arbitrary files as recordings. For more information about these vulnerabilities, see the Detai...
Cisco Webex Meetings -
NA
CVE-2023-20134
Multiple vulnerabilities in the web interface of Cisco Webex Meetings could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack or upload arbitrary files as recordings. For more information about these vulnerabilities, see the Detai...
Cisco Webex Meetings -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »