Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security appliance vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2019-15956
A vulnerability in the web management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform an unauthorized system reset on an affected device. The vulnerability is due to improper authorization c...
Cisco Asyncos
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 11.7.0-fcs-418
641
VMScore
CVE-2019-1816
A vulnerability in the log subscription subsystem of the Cisco Web Security Appliance (WSA) could allow an authenticated, local malicious user to perform command injection and elevate privileges to root. The vulnerability is due to insufficient validation of user-supplied input o...
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.5.0-fcs-614
Cisco Web Security Appliance Wsa10.5.0-fcs-000
445
VMScore
CVE-2019-1817
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliance could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper validation of H...
Cisco Web Security Appliance 11.5.1-fcs-115
Cisco Web Security Appliance 11.5.1-fcs-124
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 11.7.0-fcs-334
694
VMScore
CVE-2015-6293
Cisco AsyncOS 8.x prior to 8.0.8-113, 8.1.x and 8.5.x prior to 8.5.3-051, 8.6.x and 8.7.x prior to 8.7.0-171-LD, and 8.8.x prior to 8.8.0-085 on Web Security Appliance (WSA) devices allows remote malicious users to cause a denial of service (memory consumption) via multiple file-...
Cisco Web Security Appliance 8.0.6-078
Cisco Web Security Appliance 8.5.0.000
Cisco Web Security Appliance 8.0.5
Cisco Web Security Appliance 8.0.7-142
Cisco Web Security Appliance 8.0.0-000
Cisco Web Security Appliance 8.5.2-024
Cisco Web Security Appliance 8.0.6
Cisco Web Security Appliance 8.0.8-mr-113
Cisco Web Security Appliance 8.5.0-497
445
VMScore
CVE-2015-6386
The passthrough FTP feature on Cisco Web Security Appliance (WSA) devices with software 8.0.7-142 and 8.5.1-021 allows remote malicious users to cause a denial of service (CPU consumption) via FTP sessions in which the control connection is ended after data transfer, aka Bug ID C...
Cisco Web Security Appliance 8.0.7-142
Cisco Web Security Appliance 8.5.1-021
801
VMScore
CVE-2017-6746
A vulnerability in the web interface of the Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. The attacker must authenticate with valid administrator credentials. Affected Products: ...
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.1.0
Cisco Web Security Appliance 10.1.1-230
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 11.0.0-613
Cisco Web Security Appliance 10.0 Base
383
VMScore
CVE-2015-4288
The LDAP implementation on the Cisco Web Security Appliance (WSA) 8.5.0-000, Email Security Appliance (ESA) 8.5.7-042, and Content Security Management Appliance (SMA) 8.3.6-048 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to ...
Cisco Web Security Appliance 8.5.0-000
Cisco Email Security Appliance 8.5.7-042
Cisco Content Security Management Appliance 8.3.6-048
383
VMScore
CVE-2015-0623
Cross-site scripting (XSS) vulnerability in the Administrator report page on Cisco Web Security Appliance (WSA) devices allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCus40627.
Cisco Web Security Appliance -
445
VMScore
CVE-2015-0628
The proxy engine on Cisco Web Security Appliance (WSA) devices allows remote malicious users to bypass intended proxying restrictions via a malformed HTTP method, aka Bug ID CSCus79174.
Cisco Web Security Appliance -
383
VMScore
CVE-2015-0698
Multiple cross-site scripting (XSS) vulnerabilities in filter search forms in admin web pages on Cisco Web Security Appliance (WSA) devices with software 8.5.0-497 allow remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCut39213.
Cisco Web Security Appliance
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »