Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security appliance vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-3259
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to retrieve memory contents on an affected device, which could lead to the dis...
Cisco Firepower Threat Defense
Cisco Adaptive Security Appliance Software
2 Articles
5
CVSSv2
CVE-2020-3164
A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated remote malicious user to cause high CPU usage ...
Cisco Cloud Email Security
Cisco Content Security Management Appliance
Cisco Email Security Appliance
Cisco Web Security Appliance
3.5
CVSSv2
CVE-2015-7851
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...
Ntp Ntp
Ntp Ntp 4.2.8
4.3
CVSSv2
CVE-2012-1316
Cisco IronPort Web Security Appliance does not check for certificate revocation which could lead to MITM attacks
Cisco Ironport Web Security Appliance -
5.8
CVSSv2
CVE-2012-1326
Cisco IronPort Web Security Appliance up to and including 7.5 does not validate the basic constraints of the certificate authority which could lead to MITM attacks
Cisco Ironport Web Security Appliance
3.2
CVSSv2
CVE-2012-0334
Cisco IronPort Web Security Appliance AsyncOS software before 7.5 has a SSL Certificate Caching vulnerability which could allow man-in-the-middle attacks
Cisco Ironport Web Security Appliance
6.5
CVSSv2
CVE-2019-15956
A vulnerability in the web management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform an unauthorized system reset on an affected device. The vulnerability is due to improper authorization c...
Cisco Asyncos
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.5.1-fcs-125
Cisco Web Security Appliance 11.7.0-fcs-418
4.3
CVSSv2
CVE-2019-12695
A vulnerability in the Clientless SSL VPN (WebVPN) portal of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-ba...
Cisco Adaptive Security Appliance
Cisco Adaptive Security Appliance Software
Cisco Firepower Threat Defense
10
CVSSv2
CVE-2019-1937
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote malicious user to acquire a valid session token with administra...
Cisco Integrated Management Controller Supervisor
Cisco Ucs Director
Cisco Ucs Director 6.7\\(0.0.67265\\)
Cisco Ucs Director Express For Big Data 3.6.0.0
Cisco Ucs Director Express For Big Data
1 EDB exploit
2 Metasploit modules
1 Article
6.5
CVSSv2
CVE-2019-1934
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote malicious user to elevate privileges and execute administrative functions on an affected device. The vulnerability is due to insufficient...
Cisco Adaptive Security Appliance Software
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »