Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco asyncos - vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-20675
A vulnerability in the TCP/IP stack of Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Secure Email and Web Manager, formerly Security Management Appliance, could allow an unauthenticated, remote malicious user to crash the Simple Network Manag...
Cisco Asyncos
5.4
CVSSv3
CVE-2022-20781
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. ...
Cisco Asyncos
5.3
CVSSv3
CVE-2022-20784
A vulnerability in the Web-Based Reputation Score (WBRS) engine of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to bypass established web request policies and access blocked content on an affected device. This...
Cisco Web Security Appliance
7.5
CVSSv3
CVE-2022-20653
A vulnerability in the DNS-based Authentication of Named Entities (DANE) email verification component of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affect...
Cisco Asyncos
7.5
CVSSv3
CVE-2021-34741
A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to perform a denial of service (DoS) attack against an affected device. This vulnerability is due to insufficie...
Cisco Asyncos
Cisco Asyncos 13.5.3-010
Cisco Asyncos 13.7.0-093
7.5
CVSSv3
CVE-2021-34698
A vulnerability in the proxy service of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to exhaust system memory and cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper m...
Cisco Asyncos
5.3
CVSSv3
CVE-2021-1534
A vulnerability in the antispam protection mechanisms of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass the URL reputation filters on an affected device. This vulnerability is due to improper process...
Cisco Asyncos
8.8
CVSSv3
CVE-2021-1359
A vulnerability in the configuration management of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. This vulnerability is due to insufficient validation of user-su...
Cisco Web Security Appliance 11.8.0-429
Cisco Web Security Appliance 11.8.0-453
Cisco Asyncos
7.4
CVSSv3
CVE-2021-1566
A vulnerability in the Cisco Advanced Malware Protection (AMP) for Endpoints integration of Cisco AsyncOS for Cisco Email Security Appliance (ESA) and Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to intercept traffic between an affected...
Cisco Email Security Appliance -
Cisco Asyncos
Cisco Web Security Appliance -
6.7
CVSSv3
CVE-2021-1447
A vulnerability in the user account management system of Cisco AsyncOS for Cisco Content Security Management Appliance (SMA) could allow an authenticated, local malicious user to elevate their privileges to root. This vulnerability is due to a procedural flaw in the password gene...
Cisco Content Security Management Appliance
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »