Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco email security appliance - vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-1955
A vulnerability in the Sender Policy Framework (SPF) functionality of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote malicious user to bypass configured user filters on the device. The vulnerability is due to incomplete inp...
Cisco Email Security Appliance Firmware 12.0
Cisco Email Security Appliance Firmware
7.5
CVSSv3
CVE-2019-1921
A vulnerability in the attachment scanning of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass configured content filters on the device. The vulnerability is due to improper input validation of the ema...
Cisco Email Security Appliance 12.0.0-419
7.5
CVSSv3
CVE-2018-0419
A vulnerability in certain attachment detection mechanisms of Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote malicious user to bypass the filtering functionality of an affected system. The vulnerability is due to the improper detection of content wit...
Cisco Email Security Appliance -
7.5
CVSSv3
CVE-2017-6671
A vulnerability in the email message scanning of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass configured filters on the device, as demonstrated by the Attachment Filter. More Information: CSCvd3463...
Cisco Email Security Appliance Firmware 10.0.1-087
Cisco Email Security Appliance Firmware 9.7.1-066
7.5
CVSSv3
CVE-2017-3730
In OpenSSL 1.1.0 prior to 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0a
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Agile Engineering Data Management 6.1.3
Oracle Agile Engineering Data Management 6.2.0
Oracle Jd Edwards World Security A9.1
Oracle Jd Edwards World Security A9.2
Oracle Jd Edwards World Security A9.3
Oracle Jd Edwards World Security A9.4
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.0
Oracle Communications Eagle Lnp Application Processor 10.0
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Communications Application Session Controller 3.7.1
Oracle Communications Application Session Controller 3.8.0
1 EDB exploit
1 Github repository
1 Article
7.5
CVSSv3
CVE-2017-3733
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 prior to 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0d
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0a
Hp Operations Agent 11.15
Hp Operations Agent 11.14
1 Github repository
7.5
CVSSv3
CVE-2016-6458
A vulnerability in the content filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote malicious user to bypass content filters configured on an affected device. Email that should have been filtered could instea...
Cisco Email Security Appliance Firmware 9.7.2-047
Cisco Email Security Appliance Firmware 9.7.1-066
Cisco Email Security Appliance Firmware 10.0.0-125
Cisco Email Security Appliance Firmware 10.0.0-124
Cisco Email Security Appliance Firmware 9.9.6-026
Cisco Email Security Appliance Firmware 9.7.2-054
Cisco Email Security Appliance Firmware 9.7.2-046
Cisco Email Security Appliance Firmware 9.9 Base
7.5
CVSSv3
CVE-2016-6356
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote malicious user to cause an affected device to stop scanning and forwarding email messages due to a denial of service (DoS) c...
Cisco Email Security Appliance 9.5.0-201
Cisco Email Security Appliance 7.6.0
Cisco Email Security Appliance 8.5.6-073
Cisco Email Security Appliance 8.6.0
Cisco Email Security Appliance 8.9.1-000
Cisco Email Security Appliance 8.6.0-011
Cisco Email Security Appliance 9.1.0-032
Cisco Email Security Appliance 7.7.0-000
Cisco Email Security Appliance 7.1.4
Cisco Email Security Appliance 7.6.3-000
Cisco Email Security Appliance 8.0 Base
Cisco Email Security Appliance 7.5.2-201
Cisco Email Security Appliance 9.4.0
Cisco Email Security Appliance 9.4.4-000
Cisco Email Security Appliance 9.7.0-125
Cisco Email Security Appliance 9.6.0-000
Cisco Email Security Appliance 9.0.0-461
Cisco Email Security Appliance 8.0.1-023
Cisco Email Security Appliance 7.6.3-025
Cisco Email Security Appliance 3.3.1-09
Cisco Email Security Appliance 7.5.0
Cisco Email Security Appliance 7.1.1
7.5
CVSSv3
CVE-2016-6357
A vulnerability in the configured security policies, including drop email filtering, in Cisco AsyncOS for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass a configured drop filter by using an email with a corrupted attachment. M...
Cisco Email Security Appliance 9.7.1-066
Cisco Email Security Appliance 9.9.6-026
7.5
CVSSv3
CVE-2016-6358
A vulnerability in local FTP to the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to cause a partial denial of service (DoS) condition when the FTP application unexpectedly quits. More Information: CSCux68539. Known Affected Releases: ...
Cisco Email Security Appliance 9.9 Base
Cisco Email Security Appliance 9.7.2-046
Cisco Email Security Appliance 9.7.1-066
Cisco Email Security Appliance 9.9.6-026
Cisco Email Security Appliance 9.7.2-047
Cisco Email Security Appliance 9.7.2-054
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »