Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security appliance vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2019-1934
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote malicious user to elevate privileges and execute administrative functions on an affected device. The vulnerability is due to insufficient...
Cisco Adaptive Security Appliance Software
4
CVSSv2
CVE-2019-1884
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient input v...
Cisco Asyncos
Cisco Web Security Appliance 10.1.4-017
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.7.0-256
5
CVSSv2
CVE-2019-1886
A vulnerability in the HTTPS decryption feature of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition. The vulnerability is due to insufficient validation of Secure Sockets Layer (SSL) server certi...
Cisco Asyncos
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.7.0-fcs-334
Cisco Web Security Appliance 10.5.3-025
7.5
CVSSv2
CVE-2019-1619
A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote malicious user to bypass authentication and execute arbitrary actions with administrative privileges on an affected device. The vulnerability i...
Cisco Data Center Network Manager 10.4\\(2\\)
1 EDB exploit
2 Metasploit modules
5
CVSSv2
CVE-2019-1622
A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote malicious user to retrieve sensitive information from an affected device. The vulnerability is due to improper access controls for certain URLs...
Cisco Data Center Network Manager 11.0\\(1\\)
1 EDB exploit
2 Metasploit modules
7.2
CVSSv2
CVE-2019-1649
A vulnerability in the logic that handles access control to one of the hardware components in Cisco's proprietary Secure Boot implementation could allow an authenticated, local malicious user to write a modified firmware image to the component. This vulnerability affects mul...
Cisco Asa 5500 Firmware
Cisco Firepower 2100 Firmware
Cisco Firepower 4000 Firmware
Cisco Firepower 9000 Firmware
Cisco Ons 15454 Mstp Firmware
Cisco Analog Voice Network Interface Modules Firmware
Cisco Integrated Services Router T1\\/e1 Voice And Wan Network Interface Modules Firmware
Cisco Supervisor A\\+ Firmware
Cisco Supervisor B\\+ Firmware
Cisco 15454-m-wse-k9 Firmware
Cisco Ios Xe
Cisco Ios
Cisco Industrial Security Appliances 3000 Firmware
Cisco Integrated Services Router 4200 Firmware
Cisco Integrated Services Router 4300 Firmware
Cisco Integrated Services Router 4400 Firmware
Cisco Asr 1000 Series Firmware
Cisco Asr 1001 Firmware 16.0.0
Cisco Ios Xr 7.0.1
Cisco Catalyst 9800-40 Wireless Controller Firmware -
Cisco Catalyst 9800-80 Wireless Controller Firmware -
Cisco Ic3000-k9 Firmware
2 Articles
5
CVSSv2
CVE-2019-1817
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliance could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper validation of H...
Cisco Web Security Appliance 11.5.1-fcs-115
Cisco Web Security Appliance 11.5.1-fcs-124
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 11.7.0-fcs-334
9.3
CVSSv2
CVE-2019-1713
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack on an affected system. The vulnerability is due to insufficient CS...
Cisco Adaptive Security Appliance Software
7.2
CVSSv2
CVE-2019-1816
A vulnerability in the log subscription subsystem of the Cisco Web Security Appliance (WSA) could allow an authenticated, local malicious user to perform command injection and elevate privileges to root. The vulnerability is due to insufficient validation of user-supplied input o...
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.5.0-fcs-614
Cisco Web Security Appliance Wsa10.5.0-fcs-000
5
CVSSv2
CVE-2019-1672
A vulnerability in the Decryption Policy Default Action functionality of the Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to bypass a configured drop policy and allow traffic onto the network that should have been denied. The vulnerabil...
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 11.5.1-fcs-115
Cisco Web Security Appliance 10.5.2-072
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5274
CVE-2024-35388
CVE-2024-35396
elevation of privilege
CVE-2021-47544
file upload
CVE-2021-47545
memory leak
CVE-2024-4956
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »