Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
email security vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-2879
Multiple cross-site scripting (XSS) vulnerabilities in Dell SonicWALL Email Security 7.4.5 and previous versions allow remote authenticated administrators to inject arbitrary web script or HTML via (1) the uploadPatch parameter to the System/Advanced page (settings_advanced.html)...
Sonicwall Email Security Appliance
1 EDB exploit
4.3
CVSSv2
CVE-2016-6416
The FTP service in Cisco AsyncOS on Email Security Appliance (ESA) devices 9.6.0-000 up to and including 9.9.6-026, Web Security Appliance (WSA) devices 9.0.0-162 up to and including 9.5.0-444, and Content Security Management Appliance (SMA) devices allows remote malicious users ...
Cisco Content Security Management Appliance 9.1.0-033
Cisco Email Security Appliance 9.9 Base
Cisco Web Security Appliance 9.5.0-235
Cisco Web Security Appliance 9.5.0-284
Cisco Email Security Appliance 9.6.0-051
Cisco Email Security Appliance 9.7.1-066
Cisco Content Security Management Appliance 9.1.0-031
Cisco Email Security Appliance 9.9.6-026
Cisco Content Security Management Appliance 9.1.0-103
Cisco Content Security Management Appliance 9.6.0
Cisco Web Security Appliance 9.5 Base
Cisco Content Security Management Appliance 9.1.0-004
Cisco Content Security Management Appliance 9.1.0
Cisco Web Security Appliance 9.5.0-444
Cisco Web Security Appliance 9.1.0-000
Cisco Web Security Appliance 9.1.0-070
Cisco Web Security Appliance 9.0.0-162
Cisco Content Security Management Appliance 9.5.0
Cisco Email Security Appliance 9.6.0-000
Cisco Web Security Appliance 9.1 Base
Cisco Email Security Appliance 9.6.0-042
5
CVSSv2
CVE-2009-5121
Websense Email Security 7.1 before Hotfix 4 allows remote malicious users to bypass the sender-based blacklist by using the 8BITMIME EHLO keyword in the SMTP session.
Websense Websense Email Security 7.1
6.9
CVSSv2
CVE-2021-20025
SonicWall Email Security Virtual Appliance version 10.0.9 and previous versions versions contain a default username and a password that is used at initial setup. An attacker could exploit this transitional/temporary user account from the trusted domain to access the Virtual Appli...
Sonicwall Email Security Virtual Appliance
5
CVSSv2
CVE-2019-1905
A vulnerability in the GZIP decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass configured content filters on the device. The vulnerability is due to improper validation of GZIP-fo...
Cisco Email Security Appliance 12.0.0
Cisco Email Security Appliance 11.1.2
7.1
CVSSv2
CVE-2020-3132
A vulnerability in the email message scanning feature of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to cause a temporary denial of service (DoS) condition on an affected device. The vulnerability is due to...
Cisco Cloud Email Security
Cisco Email Security Appliance
5
CVSSv2
CVE-2014-8016
The Cisco IronPort Email Security Appliance (ESA) allows remote malicious users to cause a denial of service (CPU consumption) via long Subject headers in e-mail messages, aka Bug ID CSCzv93864.
Cisco Ironport Email Security Appliances
5
CVSSv2
CVE-2019-1831
A vulnerability in the email message scanning of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass configured content filters on the device. The vulnerability is due to improper input validation of the ...
Cisco Email Security Appliance 11.1.2-023
Cisco Email Security Appliance 12.0.0-208
6.8
CVSSv2
CVE-2013-3395
Cross-site request forgery (CSRF) vulnerability in the web framework on Cisco IronPort Web Security Appliance (WSA) devices, Email Security Appliance (ESA) devices, and Content Security Management Appliance (SMA) devices allows remote malicious users to hijack the authentication ...
Cisco Email Security Appliance Firmware -
Cisco Content Security Management Appliance -
Cisco Web Security Appliance -
4.3
CVSSv2
CVE-2015-0624
The web framework in Cisco AsyncOS on Email Security Appliance (ESA), Content Security Management Appliance (SMA), and Web Security Appliance (WSA) devices allows remote malicious users to trigger redirects via a crafted HTTP header, aka Bug IDs CSCur44412, CSCur44415, CSCur89630...
Cisco Email Security Appliance Firmware -
Cisco Content Security Management Appliance -
Cisco Web Security Appliance -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »