Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco asyncos vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-34741
A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to perform a denial of service (DoS) attack against an affected device. This vulnerability is due to insufficie...
Cisco Asyncos
Cisco Asyncos 13.5.3-010
Cisco Asyncos 13.7.0-093
5.3
CVSSv3
CVE-2023-20215
A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote malicious user to bypass a configured rule, allowing traffic onto a network that should have been blocked. This vulnerability is due to improper...
Cisco Asyncos 11.7.0-406
Cisco Asyncos 11.7.0-418
Cisco Asyncos 11.7.1-006
Cisco Asyncos 11.7.1-020
Cisco Asyncos 11.7.1-049
Cisco Asyncos 11.7.2-011
Cisco Asyncos 11.8.0-414
Cisco Asyncos 11.8.1-023
Cisco Asyncos 11.8.3-018
Cisco Asyncos 11.8.3-021
Cisco Asyncos 12.0.1-268
Cisco Asyncos 12.0.3-007
Cisco Asyncos 12.5.1-011
Cisco Asyncos 12.5.2-007
Cisco Asyncos 12.5.4-005
Cisco Asyncos 12.5.5-004
Cisco Asyncos 14.0.2-012
Cisco Asyncos 14.0.3-014
Cisco Asyncos 14.0.4-005
Cisco Asyncos 14.5.0-498
Cisco Asyncos 14.5.1-008
Cisco Asyncos 14.5.1-016
NA
CVE-2014-2195
Cisco AsyncOS on Email Security Appliance (ESA) and Content Security Management Appliance (SMA) devices, when Active Directory is enabled, does not properly handle group names, which allows remote malicious users to gain role privileges by leveraging group-name similarity, aka Bu...
Cisco Asyncos -
Cisco Content Security Management Appliance -
Cisco Email Security Appliance Firmware -
NA
CVE-2014-3381
The ZIP inspection engine in Cisco AsyncOS 8.5 and previous versions on the Cisco Email Security Appliance (ESA) does not properly analyze ZIP archives, which allows remote malicious users to bypass malware filtering via a crafted archive, aka Bug ID CSCup07934.
Cisco Asyncos
7.5
CVSSv3
CVE-2016-1461
Cisco AsyncOS on Email Security Appliance (ESA) devices up to and including 9.7.0-125 allows remote malicious users to bypass malware detection via a crafted attachment in an e-mail message, aka Bug ID CSCuz14932.
Cisco Asyncos
7.5
CVSSv3
CVE-2016-1438
Cisco AsyncOS 9.7.0-125 on Email Security Appliance (ESA) devices allows remote malicious users to bypass intended spam filtering via crafted executable content in a ZIP archive, aka Bug ID CSCuy39210.
Cisco Asyncos 9.7.0-125
8.6
CVSSv3
CVE-2019-1947
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to cause the CPU utilization to increase to 100 percent, causing a denial of service (DoS) condition on ...
Cisco Email Security Appliance 11.1.0-131
Cisco Asyncos 12.1.0-085
1 Article
7.4
CVSSv3
CVE-2021-1566
A vulnerability in the Cisco Advanced Malware Protection (AMP) for Endpoints integration of Cisco AsyncOS for Cisco Email Security Appliance (ESA) and Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to intercept traffic between an affected...
Cisco Email Security Appliance -
Cisco Asyncos
Cisco Web Security Appliance -
7.5
CVSSv3
CVE-2021-34698
A vulnerability in the proxy service of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to exhaust system memory and cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper m...
Cisco Asyncos
NA
CVE-2015-0577
Multiple cross-site scripting (XSS) vulnerabilities in the IronPort Spam Quarantine (ISQ) page in Cisco AsyncOS, as used on the Cisco Email Security Appliance (ESA) and Content Security Management Appliance (SMA), allow remote malicious users to inject arbitrary web script or HTM...
Cisco Asyncos -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »