Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security appliance 10.5.2 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2019-15956
A vulnerability in the web management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform an unauthorized system reset on an affected device. The vulnerability is due to improper authorization c...
Cisco Asyncos
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 11.7.0-fcs-418
4
CVSSv2
CVE-2019-1884
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient input v...
Cisco Asyncos
Cisco Web Security Appliance 10.1.4-017
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.7.0-256
5
CVSSv2
CVE-2019-1886
A vulnerability in the HTTPS decryption feature of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition. The vulnerability is due to insufficient validation of Secure Sockets Layer (SSL) server certi...
Cisco Asyncos
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.7.0-fcs-334
Cisco Web Security Appliance 10.5.3-025
7.2
CVSSv2
CVE-2019-1816
A vulnerability in the log subscription subsystem of the Cisco Web Security Appliance (WSA) could allow an authenticated, local malicious user to perform command injection and elevate privileges to root. The vulnerability is due to insufficient validation of user-supplied input o...
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.5.0-fcs-614
Cisco Web Security Appliance Wsa10.5.0-fcs-000
5
CVSSv2
CVE-2019-1672
A vulnerability in the Decryption Policy Default Action functionality of the Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to bypass a configured drop policy and allow traffic onto the network that should have been denied. The vulnerabil...
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 11.5.1-fcs-115
Cisco Web Security Appliance 10.5.2-072
7.8
CVSSv2
CVE-2018-0410
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliances could allow an unauthenticated, remote malicious user to exhaust system memory and cause a denial of service (DoS) condition on an affected system. The vulnerability exists ...
Cisco Web Security Appliance 10.5.2-042
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 9.1.1-074
Cisco Web Security Appliance 9.1.2-010
Cisco Web Security Appliance 10.1.1-235
Cisco Web Security Appliance 10.5.1-296
Cisco Web Security Appliance 9.1.2-022
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.5.1-270
Cisco Web Security Appliance 9.1.2-039
5
CVSSv2
CVE-2018-0353
A vulnerability in traffic-monitoring functions in Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to circumvent Layer 4 Traffic Monitor (L4TM) functionality and bypass security protections. The vulnerability is due to a change in the unde...
Cisco Web Security Appliance 11.5.0-fcs-442
Cisco Web Security Appliance 10.5.1-296
Cisco Web Security Appliance 10.5.1
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.2
5
CVSSv2
CVE-2015-1794
The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 prior to 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message.
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2d
1 Article
5
CVSSv2
CVE-2015-3193
The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 prior to 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote malicious users to obt...
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2d
Nodejs Node.js
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
1 Github repository
5
CVSSv2
CVE-2014-3569
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected ...
Openssl Openssl 1.0.1j
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started