Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco asyncos - vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2023-20075
Vulnerability in the CLI of Cisco Secure Email Gateway could allow an authenticated, remote malicious user to execute arbitrary commands. These vulnerability is due to improper input validation in the CLI. An attacker could exploit this vulnerability by injecting operating system...
Cisco Email Security Appliance
5.3
CVSSv3
CVE-2022-20952
A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance, formerly known as Cisco Web Security Appliance (WSA), could allow an unauthenticated, remote malicious user to bypass a configured rule, thereby allowing traffic onto a network that ...
Cisco Asyncos
Cisco Asyncos 14.5.0
5.3
CVSSv3
CVE-2023-20057
A vulnerability in the URL filtering mechanism of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass the URL reputation filters on an affected device. This vulnerability is due to improper processing of ...
Cisco Asyncos -
8.8
CVSSv3
CVE-2022-20868
A vulnerability in the web-based management interface of Cisco Email Security Appliance, Cisco Secure Email and Web Manager and Cisco Secure Web Appliance could allow an authenticated, remote malicious user to elevate privileges on an affected system. The attacker needs valid cre...
Cisco Asyncos
Cisco Asyncos 14.5
6.5
CVSSv3
CVE-2022-20942
A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA), Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance, formerly known as Cisco Web Security Appliance (WSA), could allow an authenticated, remote malicious user to retrieve...
Cisco Asyncos
7.5
CVSSv3
CVE-2022-20960
A vulnerability in Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of certain TLS connections th...
Cisco Email Security Appliance
6.5
CVSSv3
CVE-2022-20867
A vulnerability in web-based management interface of the of Cisco Email Security Appliance and Cisco Secure Email and Web Manager could allow an authenticated, remote malicious user to conduct SQL injection attacks as root on an affected system. The attacker must have the credent...
Cisco Asyncos
NA
CVE-2022-20871
A vulnerability in the web management interface of Cisco AsyncOS for Cisco Secure Web Appliance, formerly Cisco Web Security Appliance (WSA), could allow an authenticated, remote attacker to perform a command injection and elevate privileges to root. This vulnerability is due to ...
7.7
CVSSv3
CVE-2022-20664
A vulnerability in the web management interface of Cisco Secure Email and Web Manager, formerly Cisco Security Management Appliance (SMA), and Cisco Email Security Appliance (ESA) could allow an authenticated, remote malicious user to retrieve sensitive information from a Lightwe...
Cisco Email Security Appliance
Cisco Secure Email And Web Manager
1 Article
9.8
CVSSv3
CVE-2022-20798
A vulnerability in the external authentication functionality of Cisco Secure Email and Web Manager, formerly known as Cisco Security Management Appliance (SMA), and Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass authentication...
Cisco Email Security Appliance 7.1.5
Cisco Email Security Appliance
Cisco Secure Email And Web Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
client side
CVE-2021-47601
deserialization
CVE-2024-34994
encryption
CVE-2021-47609
CVE-2024-37079
CVE-2024-38608
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »