Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security appliance 10.1.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-6639
A vulnerability in the role-based access control (RBAC) functionality of Cisco Prime Data Center Network Manager (DCNM) could allow an unauthenticated, remote malicious user to access sensitive information or execute arbitrary code with root privileges on an affected system. The ...
Cisco Prime Data Center Network Manager 10.1.0
Cisco Prime Data Center Network Manager 10.1\\(2\\)
Cisco Prime Data Center Network Manager 10.1\\(1\\)
9.8
CVSSv3
CVE-2017-6640
A vulnerability in Cisco Prime Data Center Network Manager (DCNM) Software could allow an unauthenticated, remote malicious user to log in to the administrative console of a DCNM server by using an account that has a default, static password. The account could be granted root- or...
Cisco Prime Data Center Network Manager 10.1.0
Cisco Prime Data Center Network Manager 10.1\\(2\\)
Cisco Prime Data Center Network Manager 10.1\\(1\\)
1 Github repository
8.6
CVSSv3
CVE-2018-0410
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliances could allow an unauthenticated, remote malicious user to exhaust system memory and cause a denial of service (DoS) condition on an affected system. The vulnerability exists ...
Cisco Web Security Appliance 10.5.2-042
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 9.1.1-074
Cisco Web Security Appliance 9.1.2-010
Cisco Web Security Appliance 10.1.1-235
Cisco Web Security Appliance 10.5.1-296
Cisco Web Security Appliance 9.1.2-022
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.5.1-270
Cisco Web Security Appliance 9.1.2-039
7.5
CVSSv3
CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Ietf Http 2.0
Nghttp2 Nghttp2
Netty Netty
Envoyproxy Envoy 1.27.0
Envoyproxy Envoy 1.26.4
Envoyproxy Envoy 1.25.9
Envoyproxy Envoy 1.24.10
Eclipse Jetty
Caddyserver Caddy
Golang Http2
Golang Go
Golang Networking
F5 Big-ip Analytics
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Local Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Global Traffic Manager
F5 Big-ip Fraud Protection Service
F5 Big-ip Domain Name System
F5 Big-ip Application Security Manager
F5 Big-ip Application Acceleration Manager
F5 Big-ip Advanced Firewall Manager
35 Github repositories
2 Articles
7.5
CVSSv3
CVE-2017-6750
A vulnerability in AsyncOS for the Cisco Web Security Appliance (WSA) could allow an unauthenticated, local malicious user to log in to the device with the privileges of a limited user or an unauthenticated, remote malicious user to authenticate to certain areas of the web GUI, a...
Cisco Web Security Appliance 10.1.1-235
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 10.1.1-230
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Virtual Appliance 10.0.0
Cisco Web Security Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.5.1
Cisco Web Security Virtual Appliance 10.5 Base
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.1.1
Cisco Web Security Virtual Appliance 10.1 Base
7.5
CVSSv3
CVE-2017-6751
A vulnerability in the web proxy functionality of the Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to forward traffic from the web proxy interface of an affected device to the administrative management interface of an affected device, a...
Cisco Web Security Appliance 9.0.0-162
Cisco Web Security Appliance 9.0.0-193
Cisco Web Security Appliance 9.0.0-485
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Virtual Appliance 9.0.0
Cisco Web Security Virtual Appliance 10.0.0
Cisco Web Security Virtual Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.1.1
7.5
CVSSv3
CVE-2016-6469
A vulnerability in HTTP URL parsing of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) vulnerability due to the proxy process unexpectedly restarting. More Information: CSCvb04312. Known...
Cisco Web Security Appliance 9.0.1-162
Cisco Web Security Appliance 9.1.1-074
7.2
CVSSv3
CVE-2017-6746
A vulnerability in the web interface of the Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. The attacker must authenticate with valid administrator credentials. Affected Products: ...
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Appliance 10.1.0
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 11.0.0-613
Cisco Web Security Appliance 10.1.1-230
6.7
CVSSv3
CVE-2017-6748
A vulnerability in the CLI parser of the Cisco Web Security Appliance (WSA) could allow an authenticated, local malicious user to perform command injection and elevate privileges to root. The attacker must authenticate with valid operator-level or administrator-level credentials....
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.1.0
Cisco Web Security Virtual Appliance 11.0.0
Cisco Web Security Virtual Appliance 11.0 Base
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Virtual Appliance 10.0.0
Cisco Web Security Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.5 Base
Cisco Web Security Virtual Appliance 10.1.1
Cisco Web Security Virtual Appliance 10.5.1
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Virtual Appliance 10.1 Base
Cisco Web Security Appliance 11.0.0-613
Cisco Web Security Appliance 10.1.1-230
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.0-204
6.1
CVSSv3
CVE-2017-6661
A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based...
Cisco Content Security Management Appliance 10.0.0-203
Cisco Email Security Appliance 10.1.0-049
Cisco Email Security Appliance 10.0.0-203
Cisco Content Security Management Appliance 10.1.0-049
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »