Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco asyncos - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-3384
The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices prior to 7.1.3-013, 7.5 prior to 7.5.0-838, and 7.7 prior to 7.7.0-550; Email Security Appliance devices prior to 7.1.5-104, 7.3 prior to 7.3.2-026, 7.5 prior to 7.5.2-203, and 7.6 prior to 7.6.3-019; a...
Cisco Ironport Asyncos
Cisco Ironport Asyncos 7.2
Cisco Ironport Asyncos 7.3
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos 7.6
Cisco Ironport Asyncos 7.7
Cisco Ironport Asyncos 7.8
Cisco Ironport Asyncos 7.9
NA
CVE-2013-3385
The management GUI in the web framework in IronPort AsyncOS on Cisco Web Security Appliance devices prior to 7.1.3-013, 7.5 prior to 7.5.0-838, and 7.7 prior to 7.7.0-602; Email Security Appliance devices prior to 7.1.5-106 and 7.3, 7.5, and 7.6 prior to 7.6.3-019; and Content Se...
Cisco Ironport Asyncos
Cisco Ironport Asyncos 7.2
Cisco Ironport Asyncos 7.3
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos 7.6
Cisco Ironport Asyncos 7.7
Cisco Ironport Asyncos 7.8
Cisco Ironport Asyncos 7.9
NA
CVE-2013-3386
The IronPort Spam Quarantine (ISQ) component in the web framework in IronPort AsyncOS on Cisco Email Security Appliance devices prior to 7.1.5-106 and 7.3, 7.5, and 7.6 prior to 7.6.3-019 and Content Security Management Appliance devices prior to 7.9.1-102 and 8.0 prior to 8.0.0-...
Cisco Ironport Asyncos
Cisco Ironport Asyncos 7.3
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos 7.6
Cisco Ironport Asyncos 7.9
Cisco Ironport Asyncos 8.0
NA
CVE-2009-1162
Cross-site scripting (XSS) vulnerability in the Spam Quarantine login page in Cisco IronPort AsyncOS prior to 6.5.2 on Series C, M, and X appliances allows remote malicious users to inject arbitrary web script or HTML via the referrer parameter.
Cisco Ironport Asyncos 6.0.0-754
Cisco Ironport Asyncos 6.0.0-757
Cisco Ironport Asyncos 6.1.0-301
Cisco Ironport Asyncos 6.1.0-304
Cisco Ironport Asyncos 6.1.0-306
Cisco Ironport Asyncos 6.1.0-307
Cisco Ironport Asyncos 6.1.5-110
Cisco Ironport Asyncos 6.1.6-003
Cisco Ironport Asyncos 6.3.5-003
Cisco Ironport Asyncos 6.3.6-003
Cisco Ironport Asyncos 6.5.0-405
Cisco Ironport Asyncos 6.5.1-005
Cisco Ironport Asyncos 6.6.4.0-273
Cisco Ironport Email Security Appliances
NA
CVE-2013-3383
The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices prior to 7.1.3-013, 7.5 prior to 7.5.0-838, and 7.7 prior to 7.7.0-550 allows remote authenticated users to execute arbitrary commands via crafted command-line input in a URL sent over IPv4, aka Bug ID ...
Cisco Ironport Asyncos
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos 7.7
7.5
CVSSv3
CVE-2021-34741
A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to perform a denial of service (DoS) attack against an affected device. This vulnerability is due to insufficie...
Cisco Asyncos
Cisco Asyncos 13.5.3-010
Cisco Asyncos 13.7.0-093
5.3
CVSSv3
CVE-2023-20215
A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote malicious user to bypass a configured rule, allowing traffic onto a network that should have been blocked. This vulnerability is due to improper...
Cisco Asyncos 11.7.0-406
Cisco Asyncos 11.7.0-418
Cisco Asyncos 11.7.1-006
Cisco Asyncos 11.7.1-020
Cisco Asyncos 11.7.1-049
Cisco Asyncos 11.7.2-011
Cisco Asyncos 11.8.0-414
Cisco Asyncos 11.8.1-023
Cisco Asyncos 11.8.3-018
Cisco Asyncos 11.8.3-021
Cisco Asyncos 12.0.1-268
Cisco Asyncos 12.0.3-007
Cisco Asyncos 12.5.1-011
Cisco Asyncos 12.5.2-007
Cisco Asyncos 12.5.4-005
Cisco Asyncos 12.5.5-004
Cisco Asyncos 14.0.2-012
Cisco Asyncos 14.0.3-014
Cisco Asyncos 14.0.4-005
Cisco Asyncos 14.5.0-498
Cisco Asyncos 14.5.1-008
Cisco Asyncos 14.5.1-016
NA
CVE-2014-3381
The ZIP inspection engine in Cisco AsyncOS 8.5 and previous versions on the Cisco Email Security Appliance (ESA) does not properly analyze ZIP archives, which allows remote malicious users to bypass malware filtering via a crafted archive, aka Bug ID CSCup07934.
Cisco Asyncos
7.5
CVSSv3
CVE-2016-1461
Cisco AsyncOS on Email Security Appliance (ESA) devices up to and including 9.7.0-125 allows remote malicious users to bypass malware detection via a crafted attachment in an e-mail message, aka Bug ID CSCuz14932.
Cisco Asyncos
7.5
CVSSv3
CVE-2016-1438
Cisco AsyncOS 9.7.0-125 on Email Security Appliance (ESA) devices allows remote malicious users to bypass intended spam filtering via crafted executable content in a ZIP archive, aka Bug ID CSCuy39210.
Cisco Asyncos 9.7.0-125
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »