Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security virtual appliance vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-1817
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliance could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper validation of H...
Cisco Web Security Appliance 11.5.1-fcs-115
Cisco Web Security Appliance 11.5.1-fcs-124
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 11.7.0-fcs-334
NA
CVE-2015-4216
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices prior to 2015-06-25 uses the same default SSH root authorized key across different customers' installa...
Cisco Web Security Virtual Appliance 7.7.5
Cisco Email Security Virtual Appliance 8.5.7
Cisco Email Security Virtual Appliance 8.5.6
Cisco Email Security Virtual Appliance 8.0.0
Cisco Web Security Virtual Appliance 8.7.0
Cisco Content Security Management Virtual Appliance 9.0.0.087
Cisco Web Security Virtual Appliance 8.5.1
Cisco Web Security Virtual Appliance 8.0.5
Cisco Content Security Management Virtual Appliance 8.4.0.0150
Cisco Email Security Virtual Appliance 9.0.0
Cisco Web Security Virtual Appliance 8.6.0
Cisco Web Security Virtual Appliance 8.5.0
NA
CVE-2015-0732
Cross-site scripting (XSS) vulnerability in Cisco AsyncOS on the Web Security Appliance (WSA) 9.0.0-193; Email Security Appliance (ESA) 8.5.6-113, 9.1.0-032, 9.1.1-000, and 9.6.0-000; and Content Security Management Appliance (SMA) 9.1.0-033 allows remote malicious users to injec...
Cisco Web Security Appliance 9.0.0-193
Cisco Content Security Management Virtual Appliance 9.1.0-033
Cisco Email Security Appliance Firmware 8.5.6-113
Cisco Email Security Appliance Firmware 9.6.0-000
Cisco Email Security Appliance Firmware 9.1.0-032
Cisco Email Security Appliance Firmware 9.1.1-000
5.8
CVSSv3
CVE-2017-3870
A vulnerability in the URL filtering feature of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to bypass a configured URL filter rule. Affected Products: This vulnerability affects all releases prior to the firs...
Cisco Web Security Appliance 8.5.3-069
Cisco Web Security Appliance 9.1.1-074
Cisco Web Security Appliance 9.1.2-010
NA
CVE-2015-4217
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices prior to 2015-06-25 uses the same default SSH host keys across different customers' installations, whi...
Cisco Web Security Virtual Appliance 8.6.0
Cisco Web Security Virtual Appliance 8.5.1
Cisco Web Security Virtual Appliance 8.5.0
Cisco Web Security Virtual Appliance 8.0.5
Cisco Content Security Management Virtual Appliance 8.4.0.0150
Cisco Content Security Management Virtual Appliance 9.0.0.087
Cisco Email Security Virtual Appliance 9.0.0
Cisco Email Security Virtual Appliance 8.5.7
Cisco Email Security Virtual Appliance 8.0.0
Cisco Email Security Virtual Appliance 8.5.6
Cisco Web Security Virtual Appliance 8.7.0
Cisco Web Security Virtual Appliance 7.7.5
5.8
CVSSv3
CVE-2017-3827
A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauthenticated, remote malicious user to bypass configured user filters on the device....
Cisco Web Security Appliance 10.0.0-082
Cisco Web Security Appliance 10.0.0-125
Cisco Email Security Appliance Firmware 9.9.6-026
Cisco Email Security Appliance Firmware 10.0.0-082
Cisco Web Security Appliance 10.0.0-124
Cisco Email Security Appliance Firmware 10.0.0-232
Cisco Email Security Appliance Firmware 9.9.9-894
Cisco Email Security Appliance Firmware 10.0.0-203
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Appliance 10.0.0-203
Cisco Email Security Appliance Firmware 10.0.0-125
Cisco Email Security Appliance Firmware 10.0.0-124
NA
CVE-2015-6293
Cisco AsyncOS 8.x prior to 8.0.8-113, 8.1.x and 8.5.x prior to 8.5.3-051, 8.6.x and 8.7.x prior to 8.7.0-171-LD, and 8.8.x prior to 8.8.0-085 on Web Security Appliance (WSA) devices allows remote malicious users to cause a denial of service (memory consumption) via multiple file-...
Cisco Web Security Appliance 8.0.6
Cisco Web Security Appliance 8.5.0.000
Cisco Web Security Appliance 8.0.0-000
Cisco Web Security Appliance 8.0.8-mr-113
Cisco Web Security Appliance 8.0.7-142
Cisco Web Security Appliance 8.0.5
Cisco Web Security Appliance 8.5.2-024
Cisco Web Security Appliance 8.5.0-497
Cisco Web Security Appliance 8.0.6-078
7.2
CVSSv3
CVE-2017-6746
A vulnerability in the web interface of the Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. The attacker must authenticate with valid administrator credentials. Affected Products: ...
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Appliance 10.1.0
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 11.0.0-613
Cisco Web Security Appliance 10.1.1-230
NA
CVE-2015-6292
The proxy-cache implementation in Cisco AsyncOS 8.0.x prior to 8.0.7-151, 8.1.x and 8.5.x prior to 8.5.2-004, 8.6.x and 8.7.x prior to 8.7.0-171-LD, and 8.8.x prior to 8.8.0-085 on Web Security Appliance (WSA) devices allows remote malicious users to cause a denial of service (me...
Cisco Web Security Appliance 8.0.0-000
Cisco Web Security Appliance 8.0.5
Cisco Web Security Appliance 8.5.0.000
Cisco Web Security Appliance 8.5.0-497
Cisco Web Security Appliance 8.0.6-119
Cisco Web Security Appliance 8.0.6
8.8
CVSSv3
CVE-2021-1359
A vulnerability in the configuration management of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. This vulnerability is due to insufficient validation of user-su...
Cisco Web Security Appliance 11.8.0-429
Cisco Web Security Appliance 11.8.0-453
Cisco Asyncos
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »