Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ironport asyncos vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2017-12215
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for the Cisco Email Security Appliance could allow an unauthenticated, remote malicious user to cause an affected device to run out of memory and stop scanning and forwarding email messages. When sys...
Cisco Asyncos 9.5
Cisco Asyncos 9.6
Cisco Asyncos 9.7
Cisco Asyncos 9.8
Cisco Asyncos 9.1
Cisco Asyncos 9.0
Cisco Asyncos 9.1.2
4.3
CVSSv2
CVE-2014-3289
Cross-site scripting (XSS) vulnerability in the web management interface in Cisco AsyncOS on the Email Security Appliance (ESA) 8.0, Web Security Appliance (WSA) 8.0 (.5 Hot Patch 1) and previous versions, and Content Security Management Appliance (SMA) 8.3 and previous versions ...
Cisco Ironport Asyncos
Cisco Web Security Appliance -
Cisco Content Security Management Appliance -
Cisco Ironport Asyncos 8.0
Cisco Email Security Appliance Firmware -
5
CVSSv2
CVE-2018-0353
A vulnerability in traffic-monitoring functions in Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to circumvent Layer 4 Traffic Monitor (L4TM) functionality and bypass security protections. The vulnerability is due to a change in the unde...
Cisco Web Security Appliance 11.5.0-fcs-442
Cisco Web Security Appliance 10.5.1-296
Cisco Web Security Appliance 10.5.1
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.2
4.3
CVSSv2
CVE-2013-6780
Cross-site scripting (XSS) vulnerability in uploader.swf in the Uploader component in Yahoo! YUI 2.5.0 up to and including 2.9.0 allows remote malicious users to inject arbitrary web script or HTML via the allowedDomain parameter.
Yahoo Yui 2.5.0
Yahoo Yui 2.5.1
Yahoo Yui 2.8.2
Yahoo Yui 2.9.0
Yahoo Yui 2.6.0
Yahoo Yui 2.8.0
Yahoo Yui 2.5.2
Yahoo Yui 2.7.0
Yahoo Yui 2.8.1
10
CVSSv2
CVE-2016-6406
Cisco IronPort AsyncOS 9.1.2-023, 9.1.2-028, 9.1.2-036, 9.7.2-046, 9.7.2-047, 9.7.2-054, 10.0.0-124, and 10.0.0-125 on Email Security Appliance (ESA) devices, when Enrollment Client prior to 1.0.2-065 is installed, allows remote malicious users to obtain root access via a connect...
Cisco Email Security Appliance Firmware 9.1.2-036
Cisco Email Security Appliance Firmware 9.7.2-046
Cisco Email Security Appliance Firmware 10.0.0-124
Cisco Email Security Appliance Firmware 10.0.0-125
Cisco Email Security Appliance Firmware 9.1.2-023
Cisco Email Security Appliance Firmware 9.1.2-028
Cisco Email Security Appliance Firmware 9.7.2-047
Cisco Email Security Appliance Firmware 9.7.2-054
7.8
CVSSv2
CVE-2015-6291
Cisco AsyncOS prior to 8.5.7-043, 9.x prior to 9.1.1-023, and 9.5.x and 9.6.x prior to 9.6.0-046 on Email Security Appliance (ESA) devices mishandles malformed fields during body-contains, attachment-contains, every-attachment-contains, attachment-binary-contains, dictionary-matc...
Cisco Email Security Appliance 8.0 Base
Cisco Email Security Appliance 8.5 Base
Cisco Email Security Appliance 8.5.6-113
Cisco Email Security Appliance 9.1.0-032
Cisco Email Security Appliance 8.5.6-073
Cisco Email Security Appliance 9.0.0
Cisco Email Security Appliance 9.0.0-461
Cisco Email Security Appliance 8.5.6-052
Cisco Email Security Appliance 9.0.0-212
Cisco Email Security Appliance 8.5.7-042
Cisco Email Security Appliance 9.6.0-042
Cisco Email Security Appliance 9.0.5-000
Cisco Email Security Appliance 8.5.6-106
Cisco Email Security Appliance 8.5.6-074
Cisco Email Security Appliance 7.7.0-000
Cisco Email Security Appliance 7.7.1-000
7.8
CVSSv2
CVE-2013-3386
The IronPort Spam Quarantine (ISQ) component in the web framework in IronPort AsyncOS on Cisco Email Security Appliance devices prior to 7.1.5-106 and 7.3, 7.5, and 7.6 prior to 7.6.3-019 and Content Security Management Appliance devices prior to 7.9.1-102 and 8.0 prior to 8.0.0-...
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos 7.9
Cisco Ironport Asyncos 7.3
Cisco Ironport Asyncos
Cisco Ironport Asyncos 8.0
Cisco Ironport Asyncos 7.6
4.3
CVSSv2
CVE-2009-1162
Cross-site scripting (XSS) vulnerability in the Spam Quarantine login page in Cisco IronPort AsyncOS prior to 6.5.2 on Series C, M, and X appliances allows remote malicious users to inject arbitrary web script or HTML via the referrer parameter.
Cisco Ironport Asyncos 6.0.0-754
Cisco Ironport Asyncos 6.3.5-003
Cisco Ironport Asyncos 6.3.6-003
Cisco Ironport Asyncos 6.0.0-757
Cisco Ironport Asyncos 6.1.0-301
Cisco Ironport Asyncos 6.6.4.0-273
Cisco Ironport Asyncos 6.5.0-405
Cisco Ironport Asyncos 6.1.0-307
Cisco Ironport Asyncos 6.1.5-110
Cisco Ironport Asyncos 6.1.6-003
Cisco Ironport Asyncos 6.1.0-304
Cisco Ironport Asyncos 6.1.0-306
Cisco Ironport Asyncos 6.5.1-005
Cisco Ironport Email Security Appliances
10
CVSSv2
CVE-2011-4862
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 up to and including 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and previous versions, Heimdal 1.5.1 and previous versions, GNU inetutils, and possibly other products allows remote malicious users...
Gnu Inetutils
Heimdal Project Heimdal
Mit Krb5-appl
Freebsd Freebsd
Fedoraproject Fedora 15
Fedoraproject Fedora 16
Debian Debian Linux 5.0
Debian Debian Linux 6.0
Debian Debian Linux 7.0
Opensuse Opensuse 11.3
Opensuse Opensuse 11.4
Suse Linux Enterprise Desktop 10
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 9
Suse Linux Enterprise Server 10
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 10
Suse Linux Enterprise Software Development Kit 11
3 EDB exploits
5 Github repositories
1 Article
9
CVSSv2
CVE-2013-3383
The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices prior to 7.1.3-013, 7.5 prior to 7.5.0-838, and 7.7 prior to 7.7.0-550 allows remote authenticated users to execute arbitrary commands via crafted command-line input in a URL sent over IPv4, aka Bug ID ...
Cisco Ironport Asyncos 7.7
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »