Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security appliance - vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2018-0093
A vulnerability in the web-based management interface of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. T...
Cisco Web Security Appliance
8.8
CVSSv3
CVE-2016-6366
Buffer overflow in Cisco Adaptive Security Appliance (ASA) Software up to and including 9.4.2.3 on ASA 5500, ASA 5500-X, ASA Services Module, ASA 1000V, ASAv, Firepower 9300 ASA Security Module, PIX, and FWSM devices allows remote authenticated users to execute arbitrary code via...
Cisco Firepower Threat Defense Software 6.0.0
Cisco Firepower Threat Defense Software 6.0.1
Cisco Firepower Services Software For Asa 5.4.1
Cisco Firepower Services Software For Asa 5.4.0
Cisco Firepower Services Software For Asa 5.4.1.5
Cisco Firepower Services Software For Asa 5.4.1.3
Cisco Firepower Services Software For Asa 5.4.1.1
Cisco Firepower Services Software For Asa 5.4.1.6
Cisco Firepower Services Software For Asa 5.4.1.4
Cisco Firepower Services Software For Asa 5.4.1.7
Cisco Firepower Services Software For Asa 5.4.1.2
Cisco Pix Firewall 525 6.3
Cisco Pix Firewall 515 Base
Cisco Pix Firewall 525 Base
Cisco Pix Firewall Base
Cisco Pix Firewall 520 Base
Cisco Pix Firewall 535 Base
Cisco Pix Firewall 501 Base
Cisco Pix Firewall 515e Base
Cisco Pix Firewall 506 Base
Cisco Adaptive Security Appliance Software 9.3.2
Cisco Adaptive Security Appliance Software 9.1.1.4
1 EDB exploit
9 Github repositories
NA
CVE-2014-3393
The Clientless SSL VPN portal customization framework in Cisco ASA Software 8.2 prior to 8.2(5.51), 8.3 prior to 8.3(2.42), 8.4 prior to 8.4(7.23), 8.6 prior to 8.6(1.14), 9.0 prior to 9.0(4.24), 9.1 prior to 9.1(5.12), and 9.2 prior to 9.2(2.4) does not properly implement authen...
Cisco Adaptive Security Appliance Software 9.1.1.4
Cisco Adaptive Security Appliance Software 9.1.4
Cisco Adaptive Security Appliance Software 8.6.1.12
Cisco Adaptive Security Appliance Software 9.1.3
Cisco Adaptive Security Appliance Software 9.1.2
Cisco Adaptive Security Appliance Software 9.2.3
Cisco Adaptive Security Appliance Software 9.1.1
Cisco Adaptive Security Appliance Software 9.1.2.8
Cisco Adaptive Security Appliance Software 9.1.5.15
Cisco Adaptive Security Appliance Software 9.1.5.10
Cisco Adaptive Security Appliance Software 9.2.1
Cisco Adaptive Security Appliance Software 9.1.5
Cisco Adaptive Security Appliance Software 9.2.2.4
Cisco Adaptive Security Appliance Software 9.1.5.12
Cisco Adaptive Security Appliance Software 9.1.3.2
Cisco Adaptive Security Appliance Software 9.2.2
Cisco Adaptive Security Appliance Software 9.2.0
Cisco Adaptive Security Appliance Software 8.3.2.40
Cisco Adaptive Security Appliance Software 8.3.1
Cisco Adaptive Security Appliance Software 8.2.2
Cisco Adaptive Security Appliance Software 8.3.1.1
Cisco Adaptive Security Appliance Software 8.3.1.6
1 Article
8.6
CVSSv3
CVE-2024-20353
A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause the device to reload unexpectedly, resulting in a denial of ...
Cisco Adaptive Security Appliance Software 9.16.1
Cisco Adaptive Security Appliance Software 9.8.2
Cisco Adaptive Security Appliance Software 9.8.3.18
Cisco Adaptive Security Appliance Software 9.8.3.26
Cisco Adaptive Security Appliance Software 9.12.2
Cisco Adaptive Security Appliance Software 9.8.2.24
Cisco Adaptive Security Appliance Software 9.8.3.16
Cisco Adaptive Security Appliance Software 9.8.4.29
Cisco Adaptive Security Appliance Software 9.12.2.5
Cisco Adaptive Security Appliance Software 9.12.4.4
Cisco Adaptive Security Appliance Software 9.8.2.20
Cisco Adaptive Security Appliance Software 9.8.4
Cisco Adaptive Security Appliance Software 9.8.4.26
Cisco Adaptive Security Appliance Software 9.14.1.30
Cisco Adaptive Security Appliance Software 9.14.1.15
Cisco Adaptive Security Appliance Software 9.8.2.26
Cisco Adaptive Security Appliance Software 9.8.2.28
Cisco Adaptive Security Appliance Software 9.8.2.33
Cisco Adaptive Security Appliance Software 9.8.2.35
Cisco Adaptive Security Appliance Software 9.8.2.38
Cisco Adaptive Security Appliance Software 9.8.4.8
Cisco Adaptive Security Appliance Software 9.8.4.10
1 Github repository
2 Articles
NA
CVE-2009-4455
The default configuration of Cisco ASA 5500 Series Adaptive Security Appliance (Cisco ASA) 7.0, 7.1, 7.2, 8.0, 8.1, and 8.2 allows portal traffic to access arbitrary backend servers, which might allow remote authenticated users to bypass intended access restrictions and access un...
Cisco Adaptive Security Appliance 5500 7.0
Cisco Adaptive Security Appliance 5500 7.1
Cisco Adaptive Security Appliance 5500 7.2
Cisco Adaptive Security Appliance 5500 8.2
Cisco Adaptive Security Appliance 5500 8.0
Cisco Adaptive Security Appliance 5500 8.1
4.3
CVSSv3
CVE-2016-6465
A vulnerability in the content filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances and Cisco Web Security Appliances could allow an unauthenticated, remote malicious user to bypass user filters that are configured for an affected device. Affected...
Cisco Email Security Appliance 8.5.7-042
Cisco Email Security Appliance 10.0.0-232
Cisco Email Security Appliance 9.7.2-047
Cisco Email Security Appliance 10.0.0-125
NA
CVE-2015-4216
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices prior to 2015-06-25 uses the same default SSH root authorized key across different customers' installa...
Cisco Web Security Virtual Appliance 7.7.5
Cisco Email Security Virtual Appliance 8.5.7
Cisco Email Security Virtual Appliance 8.5.6
Cisco Email Security Virtual Appliance 8.0.0
Cisco Web Security Virtual Appliance 8.7.0
Cisco Content Security Management Virtual Appliance 9.0.0.087
Cisco Web Security Virtual Appliance 8.5.1
Cisco Web Security Virtual Appliance 8.0.5
Cisco Content Security Management Virtual Appliance 8.4.0.0150
Cisco Email Security Virtual Appliance 9.0.0
Cisco Web Security Virtual Appliance 8.6.0
Cisco Web Security Virtual Appliance 8.5.0
6.1
CVSSv3
CVE-2022-20713
A vulnerability in the VPN web client services component of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to conduct browser-based attacks against users of an affected devic...
Cisco Firepower Threat Defense 6.2.3
Cisco Firepower Threat Defense 6.2.3.1
Cisco Firepower Threat Defense 6.4.0
Cisco Firepower Threat Defense 6.2.3.13
Cisco Firepower Threat Defense 6.2.3.14
Cisco Firepower Threat Defense 6.2.3.15
Cisco Firepower Threat Defense 6.2.3.12
Cisco Firepower Threat Defense 6.6.0.1
Cisco Firepower Threat Defense 6.6.0
Cisco Adaptive Security Appliance Software 9.16.1
Cisco Firepower Threat Defense 7.1.0
Cisco Firepower Threat Defense 7.0.0
Cisco Firepower Threat Defense 6.7.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.0.1
Cisco Firepower Threat Defense 7.0.0.1
Cisco Firepower Threat Defense 7.0.1.1
Cisco Firepower Threat Defense 7.0.2
Cisco Firepower Threat Defense 7.0.2.1
Cisco Firepower Threat Defense 7.0.3
Cisco Firepower Threat Defense 7.0.4
Cisco Firepower Threat Defense 6.6.1
8.8
CVSSv3
CVE-2021-1359
A vulnerability in the configuration management of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. This vulnerability is due to insufficient validation of user-su...
Cisco Web Security Appliance 11.8.0-429
Cisco Web Security Appliance 11.8.0-453
Cisco Asyncos
NA
CVE-2015-4217
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices prior to 2015-06-25 uses the same default SSH host keys across different customers' installations, whi...
Cisco Web Security Virtual Appliance 8.6.0
Cisco Web Security Virtual Appliance 8.5.1
Cisco Web Security Virtual Appliance 8.5.0
Cisco Web Security Virtual Appliance 8.0.5
Cisco Content Security Management Virtual Appliance 8.4.0.0150
Cisco Content Security Management Virtual Appliance 9.0.0.087
Cisco Email Security Virtual Appliance 9.0.0
Cisco Email Security Virtual Appliance 8.5.7
Cisco Email Security Virtual Appliance 8.0.0
Cisco Email Security Virtual Appliance 8.5.6
Cisco Web Security Virtual Appliance 8.7.0
Cisco Web Security Virtual Appliance 7.7.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »