Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security appliance vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2019-1713
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack on an affected system. The vulnerability is due to insufficient CS...
Cisco Adaptive Security Appliance Software
801
VMScore
CVE-2021-34748
A vulnerability in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote malicious user to perform a command injection attack on an affected device. This vulnerability is due to insufficient input validation. An attacker cou...
Cisco Intersight Virtual Appliance
801
VMScore
CVE-2021-1618
Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote malicious user to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient in...
Cisco Intersight Virtual Appliance
801
VMScore
CVE-2021-1359
A vulnerability in the configuration management of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. This vulnerability is due to insufficient validation of user-su...
Cisco Web Security Appliance 11.8.0-429
Cisco Web Security Appliance 11.8.0-453
Cisco Asyncos
801
VMScore
CVE-2018-0300
A vulnerability in the process of uploading new application images to Cisco FXOS on the Cisco Firepower 4100 Series Next-Generation Firewall (NGFW) and Firepower 9300 Security Appliance could allow an authenticated, remote attacker using path traversal techniques to create or ove...
Cisco Fxos 2.0\\(1.68\\)
801
VMScore
CVE-2017-6746
A vulnerability in the web interface of the Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. The attacker must authenticate with valid administrator credentials. Affected Products: ...
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Appliance 10.1.0
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 11.0.0-613
Cisco Web Security Appliance 10.1.1-230
801
VMScore
CVE-2016-1458
The web-based GUI in Cisco Firepower Management Center 4.x and 5.x prior to 5.3.0.3, 5.3.1.x prior to 5.3.1.2, and 5.4.x prior to 5.4.0.1 and Cisco Adaptive Security Appliance (ASA) Software on 5500-X devices with FirePOWER Services 4.x and 5.x prior to 5.3.0.3, 5.3.1.x prior to ...
Cisco Firepower Management Center 5.3.0
Cisco Firepower Management Center 4.10.3
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 5.2.0
Cisco Firepower Management Center 5.3.1
801
VMScore
CVE-2016-1457
The web-based GUI in Cisco Firepower Management Center 4.x and 5.x prior to 5.3.1.2 and 5.4.x prior to 5.4.0.1 and Cisco Adaptive Security Appliance (ASA) Software on 5500-X devices with FirePOWER Services 4.x and 5.x prior to 5.3.1.2 and 5.4.x prior to 5.4.0.1 allows remote auth...
Cisco Firepower Management Center 5.3.0.4
Cisco Firepower Management Center 5.2.0
Cisco Firepower Management Center 5.3.1
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 4.10.3.9
801
VMScore
CVE-2015-6298
The admin web interface in Cisco AsyncOS 8.x prior to 8.0.8-113, 8.1.x and 8.5.x prior to 8.5.3-051, 8.6.x and 8.7.x prior to 8.7.0-171-LD, and 8.8.x prior to 8.8.0-085 on Web Security Appliance (WSA) devices allows remote authenticated users to obtain root privileges via crafted...
Cisco Web Security Appliance 8.5.0-497
801
VMScore
CVE-2013-3383
The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices prior to 7.1.3-013, 7.5 prior to 7.5.0-838, and 7.7 prior to 7.7.0-550 allows remote authenticated users to execute arbitrary commands via crafted command-line input in a URL sent over IPv4, aka Bug ID ...
Cisco Ironport Asyncos 7.7
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »