Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web security appliance vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2019-1884
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient input v...
Cisco Asyncos
Cisco Web Security Appliance 10.1.4-017
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.7.0-256
7.2
CVSSv2
CVE-2019-1816
A vulnerability in the log subscription subsystem of the Cisco Web Security Appliance (WSA) could allow an authenticated, local malicious user to perform command injection and elevate privileges to root. The vulnerability is due to insufficient validation of user-supplied input o...
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.5.0-fcs-614
Cisco Web Security Appliance Wsa10.5.0-fcs-000
5
CVSSv2
CVE-2019-1817
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliance could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper validation of H...
Cisco Web Security Appliance 11.5.1-fcs-115
Cisco Web Security Appliance 11.5.1-fcs-124
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 11.7.0-fcs-334
9
CVSSv2
CVE-2017-6746
A vulnerability in the web interface of the Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. The attacker must authenticate with valid administrator credentials. Affected Products: ...
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Appliance 10.1.0
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 11.0.0-613
Cisco Web Security Appliance 10.1.1-230
7.8
CVSSv2
CVE-2015-6293
Cisco AsyncOS 8.x prior to 8.0.8-113, 8.1.x and 8.5.x prior to 8.5.3-051, 8.6.x and 8.7.x prior to 8.7.0-171-LD, and 8.8.x prior to 8.8.0-085 on Web Security Appliance (WSA) devices allows remote malicious users to cause a denial of service (memory consumption) via multiple file-...
Cisco Web Security Appliance 8.0.6
Cisco Web Security Appliance 8.5.0.000
Cisco Web Security Appliance 8.0.0-000
Cisco Web Security Appliance 8.0.8-mr-113
Cisco Web Security Appliance 8.0.7-142
Cisco Web Security Appliance 8.0.5
Cisco Web Security Appliance 8.5.2-024
Cisco Web Security Appliance 8.5.0-497
Cisco Web Security Appliance 8.0.6-078
4.3
CVSSv2
CVE-2015-4288
The LDAP implementation on the Cisco Web Security Appliance (WSA) 8.5.0-000, Email Security Appliance (ESA) 8.5.7-042, and Content Security Management Appliance (SMA) 8.3.6-048 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to ...
Cisco Web Security Appliance 8.5.0-000
Cisco Email Security Appliance 8.5.7-042
Cisco Content Security Management Appliance 8.3.6-048
10
CVSSv2
CVE-2014-3073
Unspecified vulnerability in IBM Security Access Manager (ISAM) for Mobile 8.0 and IBM Security Access Manager for Web 7.0 and 8.0 allows remote malicious users to execute arbitrary code via unknown vectors.
Ibm Security Access Manager For Mobile Software 8.0
Ibm Security Access Manager For Web Appliance 8.0
Ibm Security Access Manager For Web Software 7.0
Ibm Security Access Manager For Web Appliance 7.0
Ibm Security Access Manager For Web Software 8.0
Ibm Security Access Manager For Mobile Appliance 8.0
3.2
CVSSv2
CVE-2012-0334
Cisco IronPort Web Security Appliance AsyncOS software before 7.5 has a SSL Certificate Caching vulnerability which could allow man-in-the-middle attacks
Cisco Ironport Web Security Appliance
4.3
CVSSv2
CVE-2012-1316
Cisco IronPort Web Security Appliance does not check for certificate revocation which could lead to MITM attacks
Cisco Ironport Web Security Appliance -
5.8
CVSSv2
CVE-2012-1326
Cisco IronPort Web Security Appliance up to and including 7.5 does not validate the basic constraints of the certificate authority which could lead to MITM attacks
Cisco Ironport Web Security Appliance
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3012
CVE-2024-30200
XXE
CVE-2023-24955
CVE-2023-42931
CVE-2024-29231
remote code execution
cross-site scripting
CVE-2024-0677
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »