Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
content security management appliance vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv2
CVE-2015-4322
Cisco Content Security Management Appliance (SMA) 8.3.6-039, 9.1.0-31, and 9.1.0-103 improperly restricts the privileges available after LDAP authentication, which allows remote authenticated users to read or write to an arbitrary user's Spam Quarantine folder by visiting a ...
Cisco Content Security Management Appliance 9.1.0-103
Cisco Content Security Management Appliance 8.3.6-039
Cisco Content Security Management Appliance 9.1.0-31
7.8
CVSSv2
CVE-2015-6321
Cisco AsyncOS prior to 8.5.7-042, 9.x prior to 9.1.0-032, 9.1.x prior to 9.1.1-023, and 9.5.x and 9.6.x prior to 9.6.0-042 on Email Security Appliance (ESA) devices; prior to 9.1.0-032, 9.1.1 prior to 9.1.1-005, and 9.5.x prior to 9.5.0-025 on Content Security Management Applianc...
Cisco Web Security Appliance 6.0.0-000
Cisco Web Security Appliance 7.5.0-825
Cisco Web Security Appliance 7.5.0-000
Cisco Web Security Appliance 7.7.0-000
Cisco Web Security Appliance 7.5.2-000
Cisco Web Security Appliance 7.7.1-000
Cisco Web Security Appliance 7.5.1-000
Cisco Web Security Appliance 8.0.0-000
Cisco Web Security Appliance 8.5.0.000
Cisco Web Security Appliance 5.6.0-623
Cisco Content Security Management Appliance 8.1.2-000
Cisco Content Security Management Appliance 8.2.0-238
Cisco Content Security Management Appliance 7.8.0-328
Cisco Content Security Management Appliance 7.8.1-001
Cisco Content Security Management Appliance 8.3.0-350
Cisco Content Security Management Appliance 8.3.5-061
Cisco Content Security Management Appliance 7.9.0-201
Cisco Content Security Management Appliance 7.9.2-116
Cisco Content Security Management Appliance 8.0.1-031
Cisco Content Security Management Appliance 8.3.6-014
Cisco Content Security Management Appliance 8.3.7-010
Cisco Content Security Management Appliance 8.4.0-150
4.3
CVSSv2
CVE-2016-1411
A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SMA) could allow an unauthenticated, remote malicious user to impersonate the updat...
Cisco Email Security Appliance 8.5.1-021
Cisco Content Security Management Appliance 9.1.0-004
Cisco Email Security Appliance 7.6.3-025
Cisco Email Security Appliance 8.5.0-000
Cisco Content Security Management Appliance 9.1.0-033
Cisco Web Security Appliance 8.8.0-000
Cisco Email Security Appliance 7.5.2-201
Cisco Content Security Management Appliance 9.1.0-103
Cisco Web Security Appliance 7.7.5-835
Cisco Content Security Management Appliance 9.1.0-031
Cisco Email Security Appliance 8.5.0-er1-198
Cisco Email Security Appliance 7.5.2-hp2-303
Cisco Content Security Management Appliance 9.1.0
Cisco Web Security Appliance 7.7.0-608
Cisco Email Security Appliance 8.0.1-023
Cisco Content Security Management Appliance 9.6.0
4.3
CVSSv2
CVE-2016-6416
The FTP service in Cisco AsyncOS on Email Security Appliance (ESA) devices 9.6.0-000 up to and including 9.9.6-026, Web Security Appliance (WSA) devices 9.0.0-162 up to and including 9.5.0-444, and Content Security Management Appliance (SMA) devices allows remote malicious users ...
Cisco Content Security Management Appliance 9.1.0-033
Cisco Email Security Appliance 9.9 Base
Cisco Web Security Appliance 9.5.0-235
Cisco Web Security Appliance 9.5.0-284
Cisco Email Security Appliance 9.6.0-051
Cisco Email Security Appliance 9.7.1-066
Cisco Content Security Management Appliance 9.1.0-031
Cisco Email Security Appliance 9.9.6-026
Cisco Content Security Management Appliance 9.1.0-103
Cisco Content Security Management Appliance 9.6.0
Cisco Web Security Appliance 9.5 Base
Cisco Content Security Management Appliance 9.1.0-004
Cisco Content Security Management Appliance 9.1.0
Cisco Web Security Appliance 9.5.0-444
Cisco Web Security Appliance 9.1.0-000
Cisco Web Security Appliance 9.1.0-070
Cisco Web Security Appliance 9.0.0-162
Cisco Content Security Management Appliance 9.5.0
Cisco Email Security Appliance 9.6.0-000
Cisco Web Security Appliance 9.1 Base
Cisco Email Security Appliance 9.6.0-042
6.8
CVSSv2
CVE-2013-3395
Cross-site request forgery (CSRF) vulnerability in the web framework on Cisco IronPort Web Security Appliance (WSA) devices, Email Security Appliance (ESA) devices, and Content Security Management Appliance (SMA) devices allows remote malicious users to hijack the authentication ...
Cisco Email Security Appliance Firmware -
Cisco Content Security Management Appliance -
Cisco Web Security Appliance -
4.3
CVSSv2
CVE-2015-0624
The web framework in Cisco AsyncOS on Email Security Appliance (ESA), Content Security Management Appliance (SMA), and Web Security Appliance (WSA) devices allows remote malicious users to trigger redirects via a crafted HTTP header, aka Bug IDs CSCur44412, CSCur44415, CSCur89630...
Cisco Email Security Appliance Firmware -
Cisco Content Security Management Appliance -
Cisco Web Security Appliance -
4.3
CVSSv2
CVE-2013-3396
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Content Security Management on Security Management Appliance (SMA) devices allows remote malicious users to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuh24749.
Cisco Content Security Management Appliance -
5
CVSSv2
CVE-2015-6288
Cisco Content Security Management Appliance (SMA) 7.8.0-000 does not properly validate credentials, which allows remote malicious users to cause a denial of service (rapid log-file rollover and application fault) via crafted HTTP requests, aka Bug ID CSCuw09620.
Cisco Content Security Management Appliance 7.8 Base
4.3
CVSSv2
CVE-2017-6661
A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based...
Cisco Content Security Management Appliance 10.0.0-203
Cisco Email Security Appliance 10.1.0-049
Cisco Email Security Appliance 10.0.0-203
Cisco Content Security Management Appliance 10.1.0-049
4.3
CVSSv2
CVE-2015-4288
The LDAP implementation on the Cisco Web Security Appliance (WSA) 8.5.0-000, Email Security Appliance (ESA) 8.5.7-042, and Content Security Management Appliance (SMA) 8.3.6-048 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to ...
Cisco Web Security Appliance 8.5.0-000
Cisco Email Security Appliance 8.5.7-042
Cisco Content Security Management Appliance 8.3.6-048
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400
CVE-2023-7252
CVE-2024-21111
denial of service
CVE-2024-29661
CVE-2024-22856
remote attackers
encryption
CVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »