Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
email gateway vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2015-2702
Cross-site scripting (XSS) vulnerability in the Message Log in the Email Security Gateway in Websense TRITON AP-EMAIL prior to 8.0.0 and V-Series 7.7 appliances allows remote malicious users to inject arbitrary web script or HTML via the sender address in an email.
Websense Triton Ap Web
Websense Triton Ap Data
Websense V-series Appliances 7.7
Websense Triton Ap Email
NA
CVE-2023-26292
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway, Email Security Cloud (login_submit.mhtml modules), Forcepoint Web Security Portal on Hybri...
Forcepoint Cloud Security Gateway
Forcepoint Web Security
NA
CVE-2023-26290
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway, Email Security Cloud (login_reset_request.mhtml modules), Forcepoint Web Security Portal o...
Forcepoint Cloud Security Gateway
Forcepoint Web Security
NA
CVE-2023-26291
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway, Email Security Cloud (login_form.mhtml modules), Forcepoint Web Security Portal on Hybrid ...
Forcepoint Cloud Security Gateway
Forcepoint Web Security
NA
CVE-2023-20009
A vulnerability in the Web UI and administrative CLI of the Cisco Secure Email Gateway (ESA) and Cisco Secure Email and Web Manager (SMA) could allow an authenticated remote attacker and or authenticated local malicious user to escalate their privilege level and gain root access....
Cisco Secure Email And Web Manager
Cisco Email Security Appliance
NA
CVE-2018-62303
Trend Micro Email Encryption Gateway suffers from cleartext transmission of sensitive information, missing authentication, cross site request forgery, cross site scripting, and various other vulnerabilities.
NA
CVE-2023-20075
Vulnerability in the CLI of Cisco Secure Email Gateway could allow an authenticated, remote malicious user to execute arbitrary commands. These vulnerability is due to improper input validation in the CLI. An attacker could exploit this vulnerability by injecting operating system...
Cisco Email Security Appliance
694
VMScore
CVE-2017-12215
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for the Cisco Email Security Appliance could allow an unauthenticated, remote malicious user to cause an affected device to run out of memory and stop scanning and forwarding email messages. When sys...
Cisco Asyncos 9.5
Cisco Asyncos 9.6
Cisco Asyncos 9.7
Cisco Asyncos 9.8
Cisco Asyncos 9.1
Cisco Asyncos 9.0
Cisco Asyncos 9.1.2
NA
CVE-2023-7102
Use of a Third Party library produced a vulnerability in Barracuda Networks Inc. Barracuda ESG Appliance which allowed Parameter Injection.This issue affected Barracuda ESG Appliance, from 5.1.3.001 up to and including 9.2.1.001, until Barracuda removed the vulnerable logic.
Barracuda Email Security Gateway 300 Firmware
Barracuda Email Security Gateway 400 Firmware
Barracuda Email Security Gateway 600 Firmware
Barracuda Email Security Gateway 800 Firmware
Barracuda Email Security Gateway 900 Firmware
1 Github repository
1 Article
445
VMScore
CVE-2015-4184
The anti-spam scanner on Cisco Email Security Appliance (ESA) devices 3.3.1-09, 7.5.1-gpl-022, and 8.5.6-074 allows remote malicious users to bypass intended e-mail restrictions via a malformed DNS SPF record, aka Bug IDs CSCuu35853 and CSCuu37733.
Cisco Email Security Appliance 3.331-09
Cisco Email Security Appliance 7.5.1-gpl-022
Cisco Email Security Appliance 8.5.6-074
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »