Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security virtual appliance 11.0.0 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2019-1816
A vulnerability in the log subscription subsystem of the Cisco Web Security Appliance (WSA) could allow an authenticated, local malicious user to perform command injection and elevate privileges to root. The vulnerability is due to insufficient validation of user-supplied input o...
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.5.2-072
Cisco Web Security Appliance 11.5.0-fcs-614
Cisco Web Security Appliance Wsa10.5.0-fcs-000
7.8
CVSSv2
CVE-2018-0410
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliances could allow an unauthenticated, remote malicious user to exhaust system memory and cause a denial of service (DoS) condition on an affected system. The vulnerability exists ...
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 9.1.1-074
Cisco Web Security Appliance 10.5.1-270
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.1.1-235
Cisco Web Security Appliance 9.1.2-010
Cisco Web Security Appliance 10.5.1-296
Cisco Web Security Appliance 10.5.2-042
Cisco Web Security Appliance 9.1.2-022
Cisco Web Security Appliance 9.1.2-039
5
CVSSv2
CVE-2018-0353
A vulnerability in traffic-monitoring functions in Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to circumvent Layer 4 Traffic Monitor (L4TM) functionality and bypass security protections. The vulnerability is due to a change in the unde...
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 11.5.0-fcs-442
Cisco Web Security Appliance 10.5.1-296
Cisco Web Security Appliance 10.5.1
Cisco Web Security Appliance 10.5.2
9
CVSSv2
CVE-2017-6746
A vulnerability in the web interface of the Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. The attacker must authenticate with valid administrator credentials. Affected Products: ...
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.1.0
Cisco Web Security Appliance 10.1.1-230
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 11.0.0-613
Cisco Web Security Appliance 10.0 Base
7.2
CVSSv2
CVE-2017-6748
A vulnerability in the CLI parser of the Cisco Web Security Appliance (WSA) could allow an authenticated, local malicious user to perform command injection and elevate privileges to root. The attacker must authenticate with valid operator-level or administrator-level credentials....
Cisco Web Security Virtual Appliance 11.0 Base
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Virtual Appliance 10.5.1
Cisco Web Security Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.1.0
Cisco Web Security Appliance 10.1.1-230
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Virtual Appliance 10.0.0
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 11.0.0-613
Cisco Web Security Virtual Appliance 10.1 Base
Cisco Web Security Virtual Appliance 10.5 Base
Cisco Web Security Virtual Appliance 11.0.0
Cisco Web Security Virtual Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.1.1
Cisco Web Security Appliance 10.0 Base
5
CVSSv2
CVE-2016-2180
The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL up to and including 1.0.2h allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a cr...
Openssl Openssl 1.0.1m
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.2e
Openssl Openssl 1.0.1r
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.2g
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.2h
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1t
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.1p
Openssl Openssl 1.0.1k
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1n
Openssl Openssl 1.0.1q
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1l
4.3
CVSSv2
CVE-2015-1788
The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL prior to 0.9.8s, 1.0.0 prior to 1.0.0e, 1.0.1 prior to 1.0.1n, and 1.0.2 prior to 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows re...
Openssl Openssl
Openssl Openssl 1.0.1m
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.0n
Openssl Openssl 1.0.1
Openssl Openssl 1.0.0c
Openssl Openssl 1.0.0i
Openssl Openssl 1.0.0
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.0m
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.0h
Openssl Openssl 1.0.0e
Openssl Openssl 1.0.0f
Openssl Openssl 1.0.0d
Openssl Openssl 1.0.0j
Openssl Openssl 1.0.0p
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.0o
Openssl Openssl 1.0.1d
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started