Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco email security appliance vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2018-0447
A vulnerability in the anti-spam protection mechanisms of Cisco AsyncOS Software for the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to bypass certain content filters on an affected device. The vulnerability is due to incomplete inpu...
Cisco Email Security Appliance -
7.5
CVSSv3
CVE-2018-0419
A vulnerability in certain attachment detection mechanisms of Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote malicious user to bypass the filtering functionality of an affected system. The vulnerability is due to the improper detection of content wit...
Cisco Email Security Appliance -
5.3
CVSSv3
CVE-2018-6922
One of the data structures that holds TCP segments in all versions of FreeBSD before 11.2-RELEASE-p1, 11.1-RELEASE-p12, and 10.4-RELEASE-p10 uses an inefficient algorithm to reassemble the data. This causes the CPU time spent on segment processing to grow linearly with the number...
Freebsd Freebsd 10.4
Freebsd Freebsd 11.1
Freebsd Freebsd 11.2
6.5
CVSSv3
CVE-2018-0140
A vulnerability in the spam quarantine of Cisco Email Security Appliance and Cisco Content Security Management Appliance could allow an authenticated, remote malicious user to download any message from the spam quarantine by modifying browser string information. The vulnerability...
Cisco Email Security Appliance Firmware 9.8.0-112
Cisco Email Security Appliance Firmware 10.0.1-087
Cisco Email Security Appliance Firmware 11.0.0-274
Cisco Content Security Management Appliance 10.0.0-096
Cisco Content Security Management Appliance 10.1.0-037
Cisco Content Security Management Appliance 10.1.0-052
Cisco Content Security Management Appliance 11.0.0-115
7.8
CVSSv3
CVE-2018-0095
A vulnerability in the administrative shell of Cisco AsyncOS on Cisco Email Security Appliance (ESA) and Content Security Management Appliance (SMA) could allow an authenticated, local malicious user to escalate their privilege level and gain root access. The attacker has to have...
Cisco Asyncos 9.1.1-005
Cisco Asyncos 9.7.2-065
5.8
CVSSv3
CVE-2017-12353
A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote malicious user to bypass configured user filters on the device. The vulnerability is due to impro...
Cisco Asyncos -
5.3
CVSSv3
CVE-2017-12303
A vulnerability in the Advanced Malware Protection (AMP) file filtering feature of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to bypass a configured AMP file filtering rule. The file types affected are zippe...
Cisco Asyncos 10.1.1-234
Cisco Asyncos 10.1.1-235
5.3
CVSSv3
CVE-2017-12309
A vulnerability in the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to conduct a HTTP response splitting attack. The vulnerability is due to the failure of the application or its environment to properly sanitize input values. An attac...
Cisco Email Security Appliance Firmware 10.0.2-020
Cisco Email Security Appliance Firmware 11.0.0-105
7.1
CVSSv3
CVE-2017-12215
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for the Cisco Email Security Appliance could allow an unauthenticated, remote malicious user to cause an affected device to run out of memory and stop scanning and forwarding email messages. When sys...
Cisco Asyncos 9.5
Cisco Asyncos 9.6
Cisco Asyncos 9.7
Cisco Asyncos 9.8
Cisco Asyncos 9.1
Cisco Asyncos 9.0
Cisco Asyncos 9.1.2
5.8
CVSSv3
CVE-2017-12218
A vulnerability in the malware detection functionality within Advanced Malware Protection (AMP) of Cisco AsyncOS Software for Cisco Email Security Appliances (ESAs) could allow an unauthenticated, remote malicious user to cause an email attachment containing malware to be deliver...
Cisco Asyncos -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »