Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cisco email security virtual appliance 8.5.6 vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2016-1480
A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauthenticated, remote malicious user to bypass configured user filters on the device....
Cisco Email Security Appliance 8.9.1-000Cisco Email Security Appliance 9.7.0-125Cisco Email Security Appliance 9.1.0-032Cisco Email Security Appliance 9.1.0Cisco Email Security Appliance 9.5.0-000Cisco Email Security Appliance 8.5.6-052Cisco Email Security Appliance 8.5.0-000Cisco Email Security Appliance 8.9.0Cisco Email Security Appliance 9.6.0-000Cisco Email Security Appliance 9.6.0-042Cisco Email Security Appliance 8.9.2-032Cisco Email Security Appliance 8.5.6-113Cisco Email Security Appliance 9.1.0-011Cisco Email Security Appliance 8.0.1-023Cisco Email Security Appliance 8.6.0-011Cisco Email Security Appliance 8.5.6-106Cisco Email Security Appliance 9.1.1-000Cisco Email Security Appliance 9.0.5-000Cisco Email Security Appliance 9.5.0-201Cisco Email Security Appliance 8.5.0-er1-198Cisco Email Security Appliance 9.0.0-461Cisco Email Security Appliance 9.0.0
7.8
CVSSv2
CVE-2016-1481
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device.Affected Products: This vulnerability affe...
Cisco Email Security Appliance 8.5.6-106Cisco Email Security Appliance 9.1.1-000Cisco Email Security Appliance 9.0.5-000Cisco Email Security Appliance 9.5.0-201Cisco Email Security Appliance 8.5.0-er1-198Cisco Email Security Appliance 9.0.0-461Cisco Email Security Appliance 8.5.7-042Cisco Email Security Appliance 9.4.4-000Cisco Email Security Appliance 8.6.0Cisco Email Security Appliance 8.5.6-074Cisco Email Security Appliance 9.6.0-000Cisco Email Security Appliance 9.1.0Cisco Email Security Appliance 9.4.0Cisco Email Security Appliance 8.5.6-073Cisco Email Security Appliance 9.0.0-212Cisco Email Security Appliance 8.5.0-000Cisco Email Security Appliance 8.9.0Cisco Email Security Appliance 9.6.0-042Cisco Email Security Appliance 8.9.2-032Cisco Email Security Appliance 9.1.0-101Cisco Email Security Appliance 8.5.6-113Cisco Email Security Appliance 9.1.0-011
7.8
CVSSv2
CVE-2016-1486
A vulnerability in the email attachment scanning functionality of the Advanced Malware Protection (AMP) feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote malicious user to cause an affected device to stop scanning and for...
Cisco Email Security Appliance 8.9.1-000Cisco Email Security Appliance 9.7.0-125Cisco Email Security Appliance 9.1.0-032Cisco Email Security Appliance 8.6.0Cisco Email Security Appliance 8.5.0-000Cisco Email Security Appliance 8.9.0Cisco Email Security Appliance 9.6.0-042Cisco Email Security Appliance 8.9.2-032Cisco Email Security Appliance 9.1.0-101Cisco Email Security Appliance 8.5.6-113Cisco Email Security Appliance 9.0.0-212Cisco Email Security Appliance 8.6.0-011Cisco Email Security Appliance 9.0.0Cisco Email Security Appliance 9.6.0-051Cisco Email Security Appliance 9.0.0-461Cisco Email Security Appliance 9.5.0-000Cisco Email Security Appliance 9.4.4-000Cisco Email Security Appliance 8.5.6-074Cisco Email Security Appliance 9.6.0-000Cisco Email Security Appliance 9.1.0Cisco Email Security Appliance 9.4.0Cisco Email Security Appliance 8.5.6-052
4.3
CVSSv2
CVE-2015-0732
Cross-site scripting (XSS) vulnerability in Cisco AsyncOS on the Web Security Appliance (WSA) 9.0.0-193; Email Security Appliance (ESA) 8.5.6-113, 9.1.0-032, 9.1.1-000, and 9.6.0-000; and Content Security Management Appliance (SMA) 9.1.0-033 allows remote malicious users to injec...
Cisco Web Security Appliance 9.0.0-193Cisco Content Security Management Virtual Appliance 9.1.0-033Cisco Email Security Appliance Firmware 8.5.6-113Cisco Email Security Appliance Firmware 9.6.0-000Cisco Email Security Appliance Firmware 9.1.0-032Cisco Email Security Appliance Firmware 9.1.1-000
7.8
CVSSv2
CVE-2016-6356
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote malicious user to cause an affected device to stop scanning and forwarding email messages due to a denial of service (DoS) c...
Cisco Email Security Appliance 8.9.1-000Cisco Email Security Appliance 7.5.1Cisco Email Security Appliance 9.7.1-066Cisco Email Security Appliance 9.1.0-101Cisco Email Security Appliance 9.0.0-461Cisco Email Security Appliance 9.5.0-000Cisco Email Security Appliance 8.5.6-052Cisco Email Security Appliance 7.8.0-311Cisco Email Security Appliance 9.4.4-000Cisco Email Security Appliance 9.6.0-042Cisco Email Security Appliance 8.9.2-032Cisco Email Security Appliance 9.1.0Cisco Email Security Appliance 9.4.0Cisco Email Security Appliance 7.1.2Cisco Email Security Appliance 8.6.0Cisco Email Security Appliance 9.7.0-125Cisco Email Security Appliance 7.6.0Cisco Email Security Appliance 7.1.1Cisco Email Security Appliance 8.5.6-113Cisco Email Security Appliance 7.7.0-000Cisco Email Security Appliance 8.9.0Cisco Email Security Appliance 8.5.6-074
5
CVSSv2
CVE-2016-6372
A vulnerability in the email message and content filtering for malformed Multipurpose Internet Mail Extensions (MIME) headers of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauthenticated, remote malicious use...
Cisco Web Security Appliance 9.1.0-000Cisco Email Security Appliance 9.9 BaseCisco Email Security Appliance 8.9.1-000Cisco Web Security Appliance 7.1.0Cisco Email Security Appliance 9.6.0-051Cisco Email Security Appliance 9.7.1-066Cisco Web Security Appliance 8.5.2-024Cisco Web Security Appliance 9.5.0-235Cisco Email Security Appliance 9.0.0Cisco Email Security Appliance 8.5.7-042Cisco Email Security Appliance 8.5.0-000Cisco Web Security Appliance 8.0.5 Hot Patch 1Cisco Email Security Appliance 8.0 BaseCisco Web Security Appliance 7.1.2Cisco Email Security Appliance 9.1.0-032Cisco Web Security Appliance 8.5.2-027Cisco Web Security Appliance 7.1.1Cisco Web Security Appliance 8.8.0-085Cisco Web Security Appliance 8.0.7-142Cisco Email Security Appliance 8.9.0Cisco Email Security Appliance 9.7.0-125Cisco Email Security Appliance 8.5.6-074
7.8
CVSSv2
CVE-2015-6291
Cisco AsyncOS prior to 8.5.7-043, 9.x prior to 9.1.1-023, and 9.5.x and 9.6.x prior to 9.6.0-046 on Email Security Appliance (ESA) devices mishandles malformed fields during body-contains, attachment-contains, every-attachment-contains, attachment-binary-contains, dictionary-matc...
Cisco Email Security Appliance 8.0 BaseCisco Email Security Appliance 8.5 BaseCisco Email Security Appliance 8.5.6-113Cisco Email Security Appliance 9.1.0-032Cisco Email Security Appliance 8.5.6-073Cisco Email Security Appliance 9.0.0Cisco Email Security Appliance 9.0.0-461Cisco Email Security Appliance 8.5.6-052Cisco Email Security Appliance 9.0.0-212Cisco Email Security Appliance 8.5.7-042Cisco Email Security Appliance 9.6.0-042Cisco Email Security Appliance 9.0.5-000Cisco Email Security Appliance 8.5.6-106Cisco Email Security Appliance 8.5.6-074Cisco Email Security Appliance 7.7.0-000Cisco Email Security Appliance 7.7.1-000
5
CVSSv2
CVE-2015-4216
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices prior to 2015-06-25 uses the same default SSH root authorized key across different customers' installa...
Cisco Web Security Virtual Appliance 7.7.5Cisco Email Security Virtual Appliance 8.5.7Cisco Email Security Virtual Appliance 8.5.6Cisco Email Security Virtual Appliance 8.0.0Cisco Web Security Virtual Appliance 8.7.0Cisco Content Security Management Virtual Appliance 9.0.0.087Cisco Web Security Virtual Appliance 8.5.1Cisco Web Security Virtual Appliance 8.0.5Cisco Content Security Management Virtual Appliance 8.4.0.0150Cisco Email Security Virtual Appliance 9.0.0Cisco Web Security Virtual Appliance 8.6.0Cisco Web Security Virtual Appliance 8.5.0
4.3
CVSSv2
CVE-2015-4217
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices prior to 2015-06-25 uses the same default SSH host keys across different customers' installations, whi...
Cisco Web Security Virtual Appliance 8.6.0Cisco Web Security Virtual Appliance 8.5.1Cisco Web Security Virtual Appliance 8.5.0Cisco Web Security Virtual Appliance 8.0.5Cisco Content Security Management Virtual Appliance 8.4.0.0150Cisco Content Security Management Virtual Appliance 9.0.0.087Cisco Email Security Virtual Appliance 9.0.0Cisco Email Security Virtual Appliance 8.5.7Cisco Email Security Virtual Appliance 8.0.0Cisco Email Security Virtual Appliance 8.5.6Cisco Web Security Virtual Appliance 8.7.0Cisco Web Security Virtual Appliance 7.7.5
5
CVSSv2
CVE-2015-4184
The anti-spam scanner on Cisco Email Security Appliance (ESA) devices 3.3.1-09, 7.5.1-gpl-022, and 8.5.6-074 allows remote malicious users to bypass intended e-mail restrictions via a malformed DNS SPF record, aka Bug IDs CSCuu35853 and CSCuu37733.
Cisco Email Security Appliance 3.331-09Cisco Email Security Appliance 7.5.1-gpl-022Cisco Email Security Appliance 8.5.6-074
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client sideCVE-2023-31889template injectionCVE-2024-4304CVE-2006-4304CVE-2024-33272type confusionCVE-2024-21345CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook