Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web security appliance vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2015-6287
Cisco Web Security Appliance (WSA) 8.0.6-078 and 8.0.6-115 allows remote malicious users to cause a denial of service (service outage) via a flood of TCP traffic that leads to DNS resolution delays, aka Bug IDs CSCur32005 and CSCur07907.
Cisco Web Security Virtual Appliance 8.0 Base
Cisco Web Security Virtual Appliance 8.0.6
Cisco Web Security Virtual Appliance 8.0.5
5
CVSSv2
CVE-2017-3870
A vulnerability in the URL filtering feature of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to bypass a configured URL filter rule. Affected Products: This vulnerability affects all releases prior to the firs...
Cisco Web Security Appliance 8.5.3-069
Cisco Web Security Appliance 9.1.1-074
Cisco Web Security Appliance 9.1.2-010
4
CVSSv2
CVE-2014-8510
The AdminUI in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) prior to 6.0 HF build 1244 allows remote authenticated users to read arbitrary files via vectors related to configuration input when saving filters.
Trendmicro Interscan Web Security Virtual Appliance 5.6
Trendmicro Interscan Web Security Virtual Appliance 5.5
Trendmicro Interscan Web Security Virtual Appliance 5.1
Trendmicro Interscan Web Security Virtual Appliance 6.0
5
CVSSv2
CVE-2016-1296
The proxy engine on Cisco Web Security Appliance (WSA) devices with software 8.5.3-055, 9.1.0-000, and 9.5.0-235 allows remote malicious users to bypass intended proxy restrictions via a malformed HTTP method, aka Bug ID CSCux00848.
Cisco Web Security Appliance 9.1.0-000
Cisco Web Security Appliance 9.5.0-235
Cisco Web Security Appliance 8.5.3-055
1 Article
5
CVSSv2
CVE-2016-6469
A vulnerability in HTTP URL parsing of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) vulnerability due to the proxy process unexpectedly restarting. More Information: CSCvb04312. Known...
Cisco Web Security Appliance 9.0.1-162
Cisco Web Security Appliance 9.1.1-074
7.8
CVSSv2
CVE-2015-6321
Cisco AsyncOS prior to 8.5.7-042, 9.x prior to 9.1.0-032, 9.1.x prior to 9.1.1-023, and 9.5.x and 9.6.x prior to 9.6.0-042 on Email Security Appliance (ESA) devices; prior to 9.1.0-032, 9.1.1 prior to 9.1.1-005, and 9.5.x prior to 9.5.0-025 on Content Security Management Applianc...
Cisco Web Security Appliance 6.0.0-000
Cisco Web Security Appliance 7.5.0-825
Cisco Web Security Appliance 7.5.0-000
Cisco Web Security Appliance 7.7.0-000
Cisco Web Security Appliance 7.5.2-000
Cisco Web Security Appliance 7.7.1-000
Cisco Web Security Appliance 7.5.1-000
Cisco Web Security Appliance 8.0.0-000
Cisco Web Security Appliance 8.5.0.000
Cisco Web Security Appliance 5.6.0-623
Cisco Content Security Management Appliance 8.1.2-000
Cisco Content Security Management Appliance 8.2.0-238
Cisco Content Security Management Appliance 7.8.0-328
Cisco Content Security Management Appliance 7.8.1-001
Cisco Content Security Management Appliance 8.3.0-350
Cisco Content Security Management Appliance 8.3.5-061
Cisco Content Security Management Appliance 7.9.0-201
Cisco Content Security Management Appliance 7.9.2-116
Cisco Content Security Management Appliance 8.0.1-031
Cisco Content Security Management Appliance 8.3.6-014
Cisco Content Security Management Appliance 8.3.7-010
Cisco Content Security Management Appliance 8.4.0-150
4.3
CVSSv2
CVE-2015-6290
Cisco Web Security Appliance (WSA) 8.0.7 allows remote HTTP servers to cause a denial of service (memory consumption from stale TCP connections) via crafted responses, aka Bug ID CSCuw10426.
Cisco Web Security Virtual Appliance 8.0 Base
Cisco Web Security Virtual Appliance 8.0.5
Cisco Web Security Virtual Appliance 8.0.7
Cisco Web Security Virtual Appliance 8.0.6
6.8
CVSSv2
CVE-2013-3395
Cross-site request forgery (CSRF) vulnerability in the web framework on Cisco IronPort Web Security Appliance (WSA) devices, Email Security Appliance (ESA) devices, and Content Security Management Appliance (SMA) devices allows remote malicious users to hijack the authentication ...
Cisco Email Security Appliance Firmware -
Cisco Content Security Management Appliance -
Cisco Web Security Appliance -
4.3
CVSSv2
CVE-2015-0624
The web framework in Cisco AsyncOS on Email Security Appliance (ESA), Content Security Management Appliance (SMA), and Web Security Appliance (WSA) devices allows remote malicious users to trigger redirects via a crafted HTTP header, aka Bug IDs CSCur44412, CSCur44415, CSCur89630...
Cisco Email Security Appliance Firmware -
Cisco Content Security Management Appliance -
Cisco Web Security Appliance -
7.2
CVSSv2
CVE-2018-0428
A vulnerability in the account management subsystem of Cisco Web Security Appliance (WSA) could allow an authenticated, local malicious user to elevate privileges to root. The attacker must authenticate with valid administrator credentials. The vulnerability is due to improper im...
Cisco Web Security Appliance 11.5.0-fcs-000
Cisco Web Security Appliance Wsa10.5.0-fcs-000
Cisco Web Security Appliance 11.0.0-fcs-250
Cisco Web Security Appliance Wsa10.0.0-959
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3012
CVE-2024-30200
XXE
CVE-2023-24955
CVE-2023-42931
CVE-2024-29231
remote code execution
cross-site scripting
CVE-2024-0677
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »