Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
email security appliance vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-1921
A vulnerability in the attachment scanning of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass configured content filters on the device. The vulnerability is due to improper input validation of the ema...
Cisco Email Security Appliance 12.0.0-419
5
CVSSv2
CVE-2018-0447
A vulnerability in the anti-spam protection mechanisms of Cisco AsyncOS Software for the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass certain content filters on an affected device. The vulnerability is due to incomplete inpu...
Cisco Email Security Appliance -
4.3
CVSSv2
CVE-2019-1933
A vulnerability in the email message scanning of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass configured filters on the device. The vulnerability is due to improper input validation of certain emai...
Cisco Email Security Appliance 11.1.2-023
7.1
CVSSv2
CVE-2019-15961
A vulnerability in the email parsing module Clam AntiVirus (ClamAV) Software versions 0.102.0, 0.101.4 and prior could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due to inefficient MIME parsin...
Clamav Clamav
Clamav Clamav 0.102.0
Cisco Email Security Appliance Firmware 11.1.2-023
Cisco Email Security Appliance Firmware 11.1.1-042
Debian Debian Linux 8.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
4.3
CVSSv2
CVE-2014-3289
Cross-site scripting (XSS) vulnerability in the web management interface in Cisco AsyncOS on the Email Security Appliance (ESA) 8.0, Web Security Appliance (WSA) 8.0 (.5 Hot Patch 1) and previous versions, and Content Security Management Appliance (SMA) 8.3 and previous versions ...
Cisco Ironport Asyncos
Cisco Web Security Appliance -
Cisco Content Security Management Appliance -
Cisco Ironport Asyncos 8.0
Cisco Email Security Appliance Firmware -
7.1
CVSSv2
CVE-2020-3132
A vulnerability in the email message scanning feature of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to cause a temporary denial of service (DoS) condition on an affected device. The vulnerability is due to...
Cisco Cloud Email Security
Cisco Email Security Appliance
NA
CVE-2023-7102
Use of a Third Party library produced a vulnerability in Barracuda Networks Inc. Barracuda ESG Appliance which allowed Parameter Injection.This issue affected Barracuda ESG Appliance, from 5.1.3.001 up to and including 9.2.1.001, until Barracuda removed the vulnerable logic.
Barracuda Email Security Gateway 300 Firmware
Barracuda Email Security Gateway 400 Firmware
Barracuda Email Security Gateway 600 Firmware
Barracuda Email Security Gateway 800 Firmware
Barracuda Email Security Gateway 900 Firmware
1 Github repository
1 Article
6.8
CVSSv2
CVE-2015-6309
Cisco Email Security Appliance (ESA) 8.5.6-106 and 9.6.0-042 allows remote authenticated users to cause a denial of service (file-descriptor consumption and device reload) via crafted HTTP requests, aka Bug ID CSCuw32211.
Cisco Email Security Appliance 9.6.0-042
Cisco Email Security Appliance Firmware 8.5.6-106
NA
CVE-2023-2868
A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape archives). ...
Barracuda Email Security Gateway 300 Firmware
Barracuda Email Security Gateway 400 Firmware
Barracuda Email Security Gateway 600 Firmware
Barracuda Email Security Gateway 800 Firmware
Barracuda Email Security Gateway 900 Firmware
1 Github repository
7 Articles
4.3
CVSSv2
CVE-2012-4580
Cross-site scripting (XSS) vulnerability in McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote malicious users to inject arbitrary web script or HTML via vectors related to the McAf...
Mcafee Email And Web Security 5.6
Mcafee Email And Web Security 5.0
Mcafee Email And Web Security 5.5
Mcafee Email Gateway 7.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »