Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cisco content security management appliance vulnerabilities and exploits

(subscribe to this query)

5.5
CVSSv2
CVE-2015-4322
Cisco Content Security Management Appliance (SMA) 8.3.6-039, 9.1.0-31, and 9.1.0-103 improperly restricts the privileges available after LDAP authentication, which allows remote authenticated users to read or write to an arbitrary user's Spam Quarantine folder by visiting a...
Cisco Content Security Management Appliance 8.3.6-039Cisco Content Security Management Appliance 9.1.0-31Cisco Content Security Management Appliance 9.1.0-103
4.3
CVSSv2
CVE-2016-6416
The FTP service in Cisco AsyncOS on Email Security Appliance (ESA) devices 9.6.0-000 through 9.9.6-026, Web Security Appliance (WSA) devices 9.0.0-162 through 9.5.0-444, and Content Security Management Appliance (SMA) devices allows remote attackers to cause a denial of service...
Cisco Content Security Management Appliance 9.1.0Cisco Content Security Management Appliance 9.1.0-004Cisco Content Security Management Appliance 9.1.0-031Cisco Content Security Management Appliance 9.1.0-033Cisco Content Security Management Appliance 9.1.0-103Cisco Content Security Management Appliance 9.5.0Cisco Content Security Management Appliance 9.6.0Cisco Email Security Appliance 9.6.0-000Cisco Email Security Appliance 9.6.0-042Cisco Email Security Appliance 9.6.0-051Cisco Email Security Appliance 9.7.1-066Cisco Email Security Appliance 9.9.6-026Cisco Email Security Appliance 9.9 BaseCisco Web Security Appliance 9.0.0-162Cisco Web Security Appliance 9.1.0-000Cisco Web Security Appliance 9.1.0-070Cisco Web Security Appliance 9.1 BaseCisco Web Security Appliance 9.5.0-235Cisco Web Security Appliance 9.5.0-284Cisco Web Security Appliance 9.5.0-444Cisco Web Security Appliance 9.5 Base
4.3
CVSSv2
CVE-2016-1411
A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SMA) could allow an unauthenticated, remote attacker to impersonate the update...
Cisco Content Security Management Appliance 9.1.0Cisco Content Security Management Appliance 9.1.0-004Cisco Content Security Management Appliance 9.1.0-031Cisco Content Security Management Appliance 9.1.0-033Cisco Content Security Management Appliance 9.1.0-103Cisco Content Security Management Appliance 9.6.0Cisco Email Security Appliance 7.5.2-201Cisco Email Security Appliance 7.5.2-hp2-303Cisco Email Security Appliance 7.6.3-025Cisco Email Security Appliance 8.0.1-023Cisco Email Security Appliance 8.5.0-000Cisco Email Security Appliance 8.5.0-er1-198Cisco Email Security Appliance 8.5.1-021Cisco Web Security Appliance 7.7.0-608Cisco Web Security Appliance 7.7.5-835Cisco Web Security Appliance 8.8.0-000
7.8
CVSSv2
CVE-2015-6321
Cisco AsyncOS before 8.5.7-042, 9.x before 9.1.0-032, 9.1.x before 9.1.1-023, and 9.5.x and 9.6.x before 9.6.0-042 on Email Security Appliance (ESA) devices; before 9.1.0-032, 9.1.1 before 9.1.1-005, and 9.5.x before 9.5.0-025 on Content Security Management Appliance (SMA)...
Cisco Web Security Appliance 5.6.0-623Cisco Web Security Appliance 6.0.0-000Cisco Web Security Appliance 7.5.0-000Cisco Web Security Appliance 7.5.0-825Cisco Web Security Appliance 7.5.1-000Cisco Web Security Appliance 7.5.2-000Cisco Web Security Appliance 7.7.0-000Cisco Web Security Appliance 7.7.1-000Cisco Web Security Appliance 8.0.0-000Cisco Web Security Appliance 8.5.0.000Cisco Content Security Management Appliance 7.8.0-328Cisco Content Security Management Appliance 7.8.1-001Cisco Content Security Management Appliance 7.9.0-201Cisco Content Security Management Appliance 7.9.2-116Cisco Content Security Management Appliance 8.0.1-031Cisco Content Security Management Appliance 8.1.0-001Cisco Content Security Management Appliance 8.1.1-033Cisco Content Security Management Appliance 8.1.2-000Cisco Content Security Management Appliance 8.2.0-238Cisco Content Security Management Appliance 8.3.0-350Cisco Content Security Management Appliance 8.3.5-061Cisco Content Security Management Appliance 8.3.6-014Cisco Content Security Management Appliance 8.3.7-010Cisco Content Security Management Appliance 8.4.0-150Cisco Content Security Management Appliance 9.0.0-073Cisco Content Security Management Appliance 9.1.0-004Cisco Email Security Appliance 7.6.1-000Cisco Email Security Appliance 7.6.3-000Cisco Email Security Appliance 7.7.0-000Cisco Email Security Appliance 7.7.1-000Cisco Email Security Appliance 7.8.0-311Cisco Email Security Appliance 8.5.6-052Cisco Email Security Appliance 8.6.0-011Cisco Email Security Appliance 8.9.1-000Cisco Email Security Appliance 8.9.2-032Cisco Email Security Appliance 9.0.0-212Cisco Email Security Appliance 9.0.5-000Cisco Email Security Appliance 9.1.0-011Cisco Email Security Appliance 9.4.4-000Cisco Email Security Appliance 9.5.0-000
4.3
CVSSv2
CVE-2017-6661
A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based...
Cisco Content Security Management Appliance 10.0.0-203Cisco Content Security Management Appliance 10.1.0-049Cisco Email Security Appliance 10.0.0-203Cisco Email Security Appliance 10.1.0-049
4
CVSSv2
CVE-2020-3447
A vulnerability in the CLI of Cisco AsyncOS for Cisco Email Security Appliance (ESA) and Cisco AsyncOS for Cisco Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability is...
Cisco Content Security Management ApplianceCisco Email Security Appliance
4.3
CVSSv2
CVE-2015-0624
The web framework in Cisco AsyncOS on Email Security Appliance (ESA), Content Security Management Appliance (SMA), and Web Security Appliance (WSA) devices allows remote attackers to trigger redirects via a crafted HTTP header, aka Bug IDs CSCur44412, CSCur44415, CSCur89630,...
Cisco Content Security Management Appliance -Cisco Web Security Appliance -Cisco Email Security Appliance Firmware -
6.8
CVSSv2
CVE-2013-3395
Cross-site request forgery (CSRF) vulnerability in the web framework on Cisco IronPort Web Security Appliance (WSA) devices, Email Security Appliance (ESA) devices, and Content Security Management Appliance (SMA) devices allows remote attackers to hijack the authentication of...
Cisco Content Security Management Appliance -Cisco Web Security Appliance -Cisco Email Security Appliance Firmware -
5
CVSSv2
CVE-2020-3164
A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated remote attacker to cause high CPU usage on an...
Cisco Cloud Email SecurityCisco Content Security Management ApplianceCisco Email Security ApplianceCisco Web Security Appliance
3.5
CVSSv2
CVE-2019-12635
A vulnerability in the authorization module of Cisco Content Security Management Appliance (SMA) Software could allow an authenticated, remote attacker to gain out-of-scope access to email. The vulnerability exists because the affected software does not correctly implement role...
Cisco Content Security Management Appliance
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-1647CVE-2021-20491CVE-2021-28310CVE-2021-30487CVE-2021-21087XPath injectionbrute forceCVE-2020-7308remote attackers
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook