Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco asyncos - vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2019-12706
A vulnerability in the Sender Policy Framework (SPF) functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass the configured user filters on an affected device. The vulnerability exists becaus...
Cisco Email Security Appliance Firmware
357
VMScore
CVE-2020-3547
A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to access sensit...
Cisco Asyncos
445
VMScore
CVE-2015-4184
The anti-spam scanner on Cisco Email Security Appliance (ESA) devices 3.3.1-09, 7.5.1-gpl-022, and 8.5.6-074 allows remote malicious users to bypass intended e-mail restrictions via a malformed DNS SPF record, aka Bug IDs CSCuu35853 and CSCuu37733.
Cisco Email Security Appliance 3.331-09
Cisco Email Security Appliance 8.5.6-074
Cisco Email Security Appliance 7.5.1-gpl-022
356
VMScore
CVE-2021-1516
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance (SMA), Cisco Email Security Appliance (ESA), and Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to access sensit...
Cisco Content Security Management Appliance -
Cisco Email Security Appliance -
Cisco Web Security Appliance -
Cisco Ironport Web Security Appliance 13.6.2-023
Cisco Ironport Web Security Appliance 14.0.0-090
Cisco Ironport Web Security Appliance 14.0.0-133
Cisco Ironport Web Security Appliance 14.0.0-292
Cisco Ironport Web Security Appliance 14.0.0-300
694
VMScore
CVE-2015-6291
Cisco AsyncOS prior to 8.5.7-043, 9.x prior to 9.1.1-023, and 9.5.x and 9.6.x prior to 9.6.0-046 on Email Security Appliance (ESA) devices mishandles malformed fields during body-contains, attachment-contains, every-attachment-contains, attachment-binary-contains, dictionary-matc...
Cisco Email Security Appliance 8.5.6-073
Cisco Email Security Appliance 9.1.0-032
Cisco Email Security Appliance 7.7.0-000
Cisco Email Security Appliance 8.0 Base
Cisco Email Security Appliance 9.0.0-461
Cisco Email Security Appliance 9.0.0-212
Cisco Email Security Appliance 8.5.6-052
Cisco Email Security Appliance 8.5.6-074
Cisco Email Security Appliance 8.5.6-106
Cisco Email Security Appliance 8.5.6-113
Cisco Email Security Appliance 9.6.0-042
Cisco Email Security Appliance 9.0.0
Cisco Email Security Appliance 8.5.7-042
Cisco Email Security Appliance 8.5 Base
Cisco Email Security Appliance 7.7.1-000
Cisco Email Security Appliance 9.0.5-000
633
VMScore
CVE-2022-20653
A vulnerability in the DNS-based Authentication of Named Entities (DANE) email verification component of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affect...
Cisco Asyncos
312
VMScore
CVE-2022-20781
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. ...
Cisco Asyncos
1000
VMScore
CVE-2011-4862
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 up to and including 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and previous versions, Heimdal 1.5.1 and previous versions, GNU inetutils, and possibly other products allows remote malicious users...
Mit Krb5-appl
Freebsd Freebsd
Heimdal Project Heimdal
Gnu Inetutils
Fedoraproject Fedora 16
Fedoraproject Fedora 15
Debian Debian Linux 5.0
Debian Debian Linux 7.0
Debian Debian Linux 6.0
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 9
Opensuse Opensuse 11.4
Opensuse Opensuse 11.3
Suse Linux Enterprise Server 10
Suse Linux Enterprise Software Development Kit 10
Suse Linux Enterprise Server 11
Suse Linux Enterprise Desktop 10
Suse Linux Enterprise Software Development Kit 11
3 EDB exploits
5 Github repositories
1 Article
890
VMScore
CVE-2016-6406
Cisco IronPort AsyncOS 9.1.2-023, 9.1.2-028, 9.1.2-036, 9.7.2-046, 9.7.2-047, 9.7.2-054, 10.0.0-124, and 10.0.0-125 on Email Security Appliance (ESA) devices, when Enrollment Client prior to 1.0.2-065 is installed, allows remote malicious users to obtain root access via a connect...
Cisco Email Security Appliance Firmware 9.1.2-028
Cisco Email Security Appliance Firmware 9.7.2-047
Cisco Email Security Appliance Firmware 9.1.2-036
Cisco Email Security Appliance Firmware 10.0.0-125
Cisco Email Security Appliance Firmware 10.0.0-124
Cisco Email Security Appliance Firmware 9.7.2-054
Cisco Email Security Appliance Firmware 9.7.2-046
Cisco Email Security Appliance Firmware 9.1.2-023
NA
CVE-2022-20960
A vulnerability in Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of certain TLS connections th...
Cisco Email Security Appliance
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »