Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco content security management appliance vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2017-6783
A vulnerability in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) could allow an authenticated, remote malicious user to discover confidential information about the appliances that should be...
Cisco Web Security Appliance 10.0.0-230
Cisco Content Security Management Appliance 10.1.0-037
Cisco Email Security Appliance 9.7.2-065
7.8
CVSSv2
CVE-2013-5537
The web framework on Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) devices does not properly manage the state of HTTP and HTTPS sessions, which allows remote malicious users to cause a denial of service (manage...
Cisco Web Security Appliance -
Cisco Content Security Management Appliance -
Cisco Email Security Appliance Firmware -
4.3
CVSSv2
CVE-2015-0732
Cross-site scripting (XSS) vulnerability in Cisco AsyncOS on the Web Security Appliance (WSA) 9.0.0-193; Email Security Appliance (ESA) 8.5.6-113, 9.1.0-032, 9.1.1-000, and 9.6.0-000; and Content Security Management Appliance (SMA) 9.1.0-033 allows remote malicious users to injec...
Cisco Web Security Appliance 9.0.0-193
Cisco Content Security Management Virtual Appliance 9.1.0-033
Cisco Email Security Appliance Firmware 8.5.6-113
Cisco Email Security Appliance Firmware 9.6.0-000
Cisco Email Security Appliance Firmware 9.1.0-032
Cisco Email Security Appliance Firmware 9.1.1-000
4.3
CVSSv2
CVE-2018-15393
A vulnerability in the web-based management interface of Cisco Content Security Management Appliance (SMA) Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface. The vulne...
Cisco Content Security Management Appliance -
5
CVSSv2
CVE-2017-12309
A vulnerability in the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to conduct a HTTP response splitting attack. The vulnerability is due to the failure of the application or its environment to properly sanitize input values. An attac...
Cisco Email Security Appliance Firmware 10.0.2-020
Cisco Email Security Appliance Firmware 11.0.0-105
4.3
CVSSv2
CVE-2015-0577
Multiple cross-site scripting (XSS) vulnerabilities in the IronPort Spam Quarantine (ISQ) page in Cisco AsyncOS, as used on the Cisco Email Security Appliance (ESA) and Content Security Management Appliance (SMA), allow remote malicious users to inject arbitrary web script or HTM...
Cisco Asyncos -
3.5
CVSSv2
CVE-2017-6749
A vulnerability in the web-based management interface of Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. Affect...
Cisco Web Security Virtual Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.5.1
Cisco Web Security Appliance 10.1.1-230
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.5.1-270
Cisco Web Security Virtual Appliance 10.1 Base
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.1-235
Cisco Web Security Virtual Appliance 10.0.0
Cisco Web Security Virtual Appliance 10.5 Base
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.1.1
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.0.0-233
8.5
CVSSv2
CVE-2016-6366
Buffer overflow in Cisco Adaptive Security Appliance (ASA) Software up to and including 9.4.2.3 on ASA 5500, ASA 5500-X, ASA Services Module, ASA 1000V, ASAv, Firepower 9300 ASA Security Module, PIX, and FWSM devices allows remote authenticated users to execute arbitrary code via...
Cisco Firepower Threat Defense Software 6.0.0
Cisco Firepower Threat Defense Software 6.0.1
Cisco Firepower Services Software For Asa 5.4.1
Cisco Firepower Services Software For Asa 5.4.0
Cisco Firepower Services Software For Asa 5.4.1.5
Cisco Firepower Services Software For Asa 5.4.1.3
Cisco Firepower Services Software For Asa 5.4.1.1
Cisco Firepower Services Software For Asa 5.4.1.6
Cisco Firepower Services Software For Asa 5.4.1.4
Cisco Firepower Services Software For Asa 5.4.1.7
Cisco Firepower Services Software For Asa 5.4.1.2
Cisco Pix Firewall 525 6.3
Cisco Pix Firewall 515 Base
Cisco Pix Firewall 525 Base
Cisco Pix Firewall Base
Cisco Pix Firewall 520 Base
Cisco Pix Firewall 535 Base
Cisco Pix Firewall 501 Base
Cisco Pix Firewall 515e Base
Cisco Pix Firewall 506 Base
Cisco Adaptive Security Appliance Software 9.3.2
Cisco Adaptive Security Appliance Software 9.1.1.4
1 EDB exploit
7 Github repositories
5
CVSSv2
CVE-2015-4216
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices prior to 2015-06-25 uses the same default SSH root authorized key across different customers' installa...
Cisco Web Security Virtual Appliance 7.7.5
Cisco Email Security Virtual Appliance 8.5.7
Cisco Email Security Virtual Appliance 8.5.6
Cisco Email Security Virtual Appliance 8.0.0
Cisco Web Security Virtual Appliance 8.7.0
Cisco Content Security Management Virtual Appliance 9.0.0.087
Cisco Web Security Virtual Appliance 8.5.1
Cisco Web Security Virtual Appliance 8.0.5
Cisco Content Security Management Virtual Appliance 8.4.0.0150
Cisco Email Security Virtual Appliance 9.0.0
Cisco Web Security Virtual Appliance 8.6.0
Cisco Web Security Virtual Appliance 8.5.0
4.3
CVSSv2
CVE-2014-3289
Cross-site scripting (XSS) vulnerability in the web management interface in Cisco AsyncOS on the Email Security Appliance (ESA) 8.0, Web Security Appliance (WSA) 8.0 (.5 Hot Patch 1) and previous versions, and Content Security Management Appliance (SMA) 8.3 and previous versions ...
Cisco Ironport Asyncos
Cisco Web Security Appliance -
Cisco Content Security Management Appliance -
Cisco Ironport Asyncos 8.0
Cisco Email Security Appliance Firmware -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »