Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ironport asyncos vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2013-3385
The management GUI in the web framework in IronPort AsyncOS on Cisco Web Security Appliance devices prior to 7.1.3-013, 7.5 prior to 7.5.0-838, and 7.7 prior to 7.7.0-602; Email Security Appliance devices prior to 7.1.5-106 and 7.3, 7.5, and 7.6 prior to 7.6.3-019; and Content Se...
Cisco Ironport Asyncos 7.8
Cisco Ironport Asyncos 7.3
Cisco Ironport Asyncos 7.7
Cisco Ironport Asyncos
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos 7.2
Cisco Ironport Asyncos 7.6
Cisco Ironport Asyncos 7.9
7.8
CVSSv2
CVE-2013-3386
The IronPort Spam Quarantine (ISQ) component in the web framework in IronPort AsyncOS on Cisco Email Security Appliance devices prior to 7.1.5-106 and 7.3, 7.5, and 7.6 prior to 7.6.3-019 and Content Security Management Appliance devices prior to 7.9.1-102 and 8.0 prior to 8.0.0-...
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos 7.9
Cisco Ironport Asyncos 7.3
Cisco Ironport Asyncos
Cisco Ironport Asyncos 8.0
Cisco Ironport Asyncos 7.6
7.2
CVSSv2
CVE-2018-0095
A vulnerability in the administrative shell of Cisco AsyncOS on Cisco Email Security Appliance (ESA) and Content Security Management Appliance (SMA) could allow an authenticated, local malicious user to escalate their privilege level and gain root access. The attacker has to have...
Cisco Asyncos 9.1.1-005
Cisco Asyncos 9.7.2-065
6.8
CVSSv2
CVE-2018-0087
A vulnerability in the FTP server of the Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to log in to the FTP server of the device without a valid password. The attacker does need to have a valid username. The vulnerability is due to incor...
Cisco Asyncos 10.5.1-296
5
CVSSv2
CVE-2018-0353
A vulnerability in traffic-monitoring functions in Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to circumvent Layer 4 Traffic Monitor (L4TM) functionality and bypass security protections. The vulnerability is due to a change in the unde...
Cisco Web Security Appliance 11.5.0-fcs-442
Cisco Web Security Appliance 10.5.1-296
Cisco Web Security Appliance 10.5.1
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.2
5
CVSSv2
CVE-2016-1288
The HTTPS Proxy feature in Cisco AsyncOS prior to 8.5.3-051 and 9.x prior to 9.0.0-485 on Web Security Appliance (WSA) devices allows remote malicious users to cause a denial of service (service outage) by leveraging certain intranet connectivity and sending a malformed HTTPS req...
Cisco Web Security Appliance 8.5.0-497
Cisco Web Security Appliance 9.0.0-193
5
CVSSv2
CVE-2015-4184
The anti-spam scanner on Cisco Email Security Appliance (ESA) devices 3.3.1-09, 7.5.1-gpl-022, and 8.5.6-074 allows remote malicious users to bypass intended e-mail restrictions via a malformed DNS SPF record, aka Bug IDs CSCuu35853 and CSCuu37733.
Cisco Email Security Appliance 3.331-09
Cisco Email Security Appliance 7.5.1-gpl-022
Cisco Email Security Appliance 8.5.6-074
4.3
CVSSv2
CVE-2015-1788
The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL prior to 0.9.8s, 1.0.0 prior to 1.0.0e, 1.0.1 prior to 1.0.1n, and 1.0.2 prior to 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows re...
Openssl Openssl
Openssl Openssl 1.0.1m
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.0n
Openssl Openssl 1.0.1
Openssl Openssl 1.0.0c
Openssl Openssl 1.0.0i
Openssl Openssl 1.0.0
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.0m
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.0h
Openssl Openssl 1.0.0e
Openssl Openssl 1.0.0f
Openssl Openssl 1.0.0d
Openssl Openssl 1.0.0j
Openssl Openssl 1.0.0p
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.0o
Openssl Openssl 1.0.1d
1 Article
4.3
CVSSv2
CVE-2015-0624
The web framework in Cisco AsyncOS on Email Security Appliance (ESA), Content Security Management Appliance (SMA), and Web Security Appliance (WSA) devices allows remote malicious users to trigger redirects via a crafted HTTP header, aka Bug IDs CSCur44412, CSCur44415, CSCur89630...
Cisco Email Security Appliance Firmware -
Cisco Content Security Management Appliance -
Cisco Web Security Appliance -
4.3
CVSSv2
CVE-2015-0577
Multiple cross-site scripting (XSS) vulnerabilities in the IronPort Spam Quarantine (ISQ) page in Cisco AsyncOS, as used on the Cisco Email Security Appliance (ESA) and Content Security Management Appliance (SMA), allow remote malicious users to inject arbitrary web script or HTM...
Cisco Asyncos -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »