Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco email security appliance vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-31488
Hyland Perceptive Filters releases prior to 2023-12-08 (e.g., 11.4.0.2647), as used in Cisco IronPort Email Security Appliance Software, Cisco Secure Email Gateway, and various non-Cisco products, allow malicious users to trigger a segmentation fault and execute arbitrary code vi...
Cisco Ironport Email Security Appliance -
Cisco Secure Email Gateway Firmware -
NA
CVE-2015-6291
Cisco AsyncOS prior to 8.5.7-043, 9.x prior to 9.1.1-023, and 9.5.x and 9.6.x prior to 9.6.0-046 on Email Security Appliance (ESA) devices mishandles malformed fields during body-contains, attachment-contains, every-attachment-contains, attachment-binary-contains, dictionary-matc...
Cisco Email Security Appliance 8.0 Base
Cisco Email Security Appliance 8.5 Base
Cisco Email Security Appliance 8.5.6-113
Cisco Email Security Appliance 9.1.0-032
Cisco Email Security Appliance 8.5.6-073
Cisco Email Security Appliance 9.0.0
Cisco Email Security Appliance 9.0.0-461
Cisco Email Security Appliance 8.5.6-052
Cisco Email Security Appliance 9.0.0-212
Cisco Email Security Appliance 8.5.7-042
Cisco Email Security Appliance 9.6.0-042
Cisco Email Security Appliance 9.0.5-000
Cisco Email Security Appliance 8.5.6-106
Cisco Email Security Appliance 8.5.6-074
Cisco Email Security Appliance 7.7.0-000
Cisco Email Security Appliance 7.7.1-000
7.5
CVSSv3
CVE-2017-6671
A vulnerability in the email message scanning of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass configured filters on the device, as demonstrated by the Attachment Filter. More Information: CSCvd3463...
Cisco Email Security Appliance Firmware 10.0.1-087
Cisco Email Security Appliance Firmware 9.7.1-066
5.3
CVSSv3
CVE-2017-12309
A vulnerability in the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to conduct a HTTP response splitting attack. The vulnerability is due to the failure of the application or its environment to properly sanitize input values. An attac...
Cisco Email Security Appliance Firmware 10.0.2-020
Cisco Email Security Appliance Firmware 11.0.0-105
4.3
CVSSv3
CVE-2017-6783
A vulnerability in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) could allow an authenticated, remote malicious user to discover confidential information about the appliances that should be...
Cisco Web Security Appliance 10.0.0-230
Cisco Content Security Management Appliance 10.1.0-037
Cisco Email Security Appliance 9.7.2-065
8.6
CVSSv3
CVE-2019-1947
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to cause the CPU utilization to increase to 100 percent, causing a denial of service (DoS) condition on ...
Cisco Email Security Appliance 11.1.0-131
Cisco Asyncos 12.1.0-085
1 Article
5.8
CVSSv3
CVE-2017-3818
A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote malicious user to bypass configured user filters on the device, aka a Malformed MIME Header Filte...
Cisco Email Security Appliance Firmware 9.7.1-066
NA
CVE-2015-0734
Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Email Security Appliance (ESA) 8.5.6-106 allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters in a (1) GET or (2) POST request, aka Bug ID CSCut87743.
Cisco Email Security Appliance Firmware 8.5.6-106
NA
CVE-2014-8016
The Cisco IronPort Email Security Appliance (ESA) allows remote malicious users to cause a denial of service (CPU consumption) via long Subject headers in e-mail messages, aka Bug ID CSCzv93864.
Cisco Ironport Email Security Appliances
NA
CVE-2013-5537
The web framework on Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) devices does not properly manage the state of HTTP and HTTPS sessions, which allows remote malicious users to cause a denial of service (manage...
Cisco Web Security Appliance -
Cisco Content Security Management Appliance -
Cisco Email Security Appliance Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »