Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security appliance - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-4198
Cross-site scripting (XSS) vulnerability in the web framework on Cisco Web Security Appliance (WSA) devices with software 8.5.0-497 allows remote malicious users to inject arbitrary web script or HTML via an unspecified HTTP header, aka Bug ID CSCuu24409.
Cisco Web Security Appliance 8.5.0-497
5.3
CVSSv3
CVE-2017-12303
A vulnerability in the Advanced Malware Protection (AMP) file filtering feature of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to bypass a configured AMP file filtering rule. The file types affected are zippe...
Cisco Asyncos 10.1.1-234
Cisco Asyncos 10.1.1-235
5.4
CVSSv3
CVE-2017-6764
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) 9.5(1) could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. T...
Cisco Adaptive Security Appliance Software 9.5\\(1\\)
5.3
CVSSv3
CVE-2022-20952
A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance, formerly known as Cisco Web Security Appliance (WSA), could allow an unauthenticated, remote malicious user to bypass a configured rule, thereby allowing traffic onto a network that ...
Cisco Asyncos
Cisco Asyncos 14.5.0
5.3
CVSSv3
CVE-2016-1288
The HTTPS Proxy feature in Cisco AsyncOS prior to 8.5.3-051 and 9.x prior to 9.0.0-485 on Web Security Appliance (WSA) devices allows remote malicious users to cause a denial of service (service outage) by leveraging certain intranet connectivity and sending a malformed HTTPS req...
Cisco Web Security Appliance 8.5.0-497
Cisco Web Security Appliance 9.0.0-193
6.1
CVSSv3
CVE-2018-15393
A vulnerability in the web-based management interface of Cisco Content Security Management Appliance (SMA) Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface. The vulne...
Cisco Content Security Management Appliance -
5.3
CVSSv3
CVE-2021-1129
A vulnerability in the authentication for the general purpose APIs implementation of Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to access gen...
Cisco Content Security Management Appliance 12.5.0
Cisco Web Security Appliance 11.8.0
Cisco Email Security Appliance 13.0.0
NA
CVE-2012-6029
Multiple cross-site scripting (XSS) vulnerabilities in the web-authentication function on the Cisco NAC Appliance 4.9.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) cm or (2) uri parameters to (a) perfigo_weblogin.jsp, or t...
Cisco Nac Appliance 3.6
Cisco Nac Appliance 4.8
Cisco Nac Appliance -
Cisco Nac Appliance 4.1
Cisco Nac Appliance 4.7.2
Cisco Nac Appliance 4.7.1
Cisco Nac Appliance 4.7
Cisco Nac Appliance 4.6
Cisco Nac Appliance 4.5
Cisco Nac Appliance 4.0
Cisco Nac Appliance
NA
CVE-2009-2631
Multiple clientless SSL VPN products that run in web browsers, including Stonesoft StoneGate; Cisco ASA; SonicWALL E-Class SSL VPN and SonicWALL SSL VPN; SafeNet SecureWire Access Gateway; Juniper Networks Secure Access; Nortel CallPilot; Citrix Access Gateway; and other products...
Cisco Adaptive Security Appliance
Sonicwall E-class Ssl Vpn
Sonicwall Ssl Vpn
Stonesoft Stonegate
Aladdin Safenet Securewire Access Gateway
6.1
CVSSv3
CVE-2018-0251
A vulnerability in the Web Server Authentication Required screen of the Clientless Secure Sockets Layer (SSL) VPN portal of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack agains...
Cisco Adaptive Security Appliance Software 9.8\\(2.15\\)
Cisco Adaptive Security Appliance Software 9.9\\(1\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »