Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
content security management virtual appliance vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2015-0732
Cross-site scripting (XSS) vulnerability in Cisco AsyncOS on the Web Security Appliance (WSA) 9.0.0-193; Email Security Appliance (ESA) 8.5.6-113, 9.1.0-032, 9.1.1-000, and 9.6.0-000; and Content Security Management Appliance (SMA) 9.1.0-033 allows remote malicious users to injec...
Cisco Web Security Appliance 9.0.0-193
Cisco Content Security Management Virtual Appliance 9.1.0-033
Cisco Email Security Appliance Firmware 8.5.6-113
Cisco Email Security Appliance Firmware 9.6.0-000
Cisco Email Security Appliance Firmware 9.1.0-032
Cisco Email Security Appliance Firmware 9.1.1-000
445
VMScore
CVE-2015-4216
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices prior to 2015-06-25 uses the same default SSH root authorized key across different customers' installa...
Cisco Web Security Virtual Appliance 7.7.5
Cisco Email Security Virtual Appliance 8.5.7
Cisco Email Security Virtual Appliance 8.5.6
Cisco Email Security Virtual Appliance 8.0.0
Cisco Web Security Virtual Appliance 8.7.0
Cisco Content Security Management Virtual Appliance 9.0.0.087
Cisco Web Security Virtual Appliance 8.5.1
Cisco Web Security Virtual Appliance 8.0.5
Cisco Content Security Management Virtual Appliance 8.4.0.0150
Cisco Email Security Virtual Appliance 9.0.0
Cisco Web Security Virtual Appliance 8.6.0
Cisco Web Security Virtual Appliance 8.5.0
383
VMScore
CVE-2015-4217
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices prior to 2015-06-25 uses the same default SSH host keys across different customers' installations, whi...
Cisco Web Security Virtual Appliance 8.6.0
Cisco Web Security Virtual Appliance 8.5.1
Cisco Web Security Virtual Appliance 8.5.0
Cisco Web Security Virtual Appliance 8.0.5
Cisco Content Security Management Virtual Appliance 8.4.0.0150
Cisco Content Security Management Virtual Appliance 9.0.0.087
Cisco Email Security Virtual Appliance 9.0.0
Cisco Email Security Virtual Appliance 8.5.7
Cisco Email Security Virtual Appliance 8.0.0
Cisco Email Security Virtual Appliance 8.5.6
Cisco Web Security Virtual Appliance 8.7.0
Cisco Web Security Virtual Appliance 7.7.5
312
VMScore
CVE-2017-6749
A vulnerability in the web-based management interface of Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. Affect...
Cisco Web Security Virtual Appliance 10.0 Base
Cisco Web Security Virtual Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.5.1
Cisco Web Security Appliance 10.1.1-230
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.5.1-270
Cisco Web Security Virtual Appliance 10.1 Base
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.1-235
Cisco Web Security Virtual Appliance 10.0.0
Cisco Web Security Virtual Appliance 10.5 Base
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.1.1
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.0.0-233
445
VMScore
CVE-2017-6751
A vulnerability in the web proxy functionality of the Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to forward traffic from the web proxy interface of an affected device to the administrative management interface of an affected device, a...
Cisco Web Security Appliance 9.0.0-162
Cisco Web Security Appliance 9.0.0-193
Cisco Web Security Appliance 9.0.0-485
Cisco Web Security Appliance 10.0.0-232
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Virtual Appliance 9.0.0
Cisco Web Security Virtual Appliance 10.0.0
Cisco Web Security Virtual Appliance 10.1.0
Cisco Web Security Virtual Appliance 10.1.1
490
VMScore
CVE-2021-34762
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote malicious user to perform a directory traversal attack on an affected device. The attacker would require valid device credentials. The vu...
Cisco Firepower Management Center Virtual Appliance 6.2.3
Cisco Sourcefire Defense Center 6.4.0
Cisco Sourcefire Defense Center 6.5.0
Cisco Firepower Threat Defense
Cisco Sourcefire Defense Center 6.2.3
Cisco Firepower Management Center Virtual Appliance 7.1.0
Cisco Sourcefire Defense Center 6.6.1
Cisco Sourcefire Defense Center 7.0.0
Cisco Firepower Management Center Virtual Appliance 6.4.0
Cisco Firepower Management Center Virtual Appliance 6.5.0
Cisco Firepower Management Center Virtual Appliance 6.6.1
Cisco Firepower Management Center Virtual Appliance 6.7.0
Cisco Firepower Management Center Virtual Appliance 7.0.0
Cisco Firepower Management Center Virtual Appliance 6.6.2
Cisco Firepower Management Center Virtual Appliance 6.6.3
Cisco Firepower Management Center Virtual Appliance 6.6.4
Cisco Sourcefire Defense Center 6.6.2
Cisco Sourcefire Defense Center 6.6.3
Cisco Sourcefire Defense Center 6.6.4
312
VMScore
CVE-2021-34763
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an malicious user to execute a cross-site scripting (XSS) attack or an open redirect attack. For more information about these vulnerabilities, see the De...
Cisco Firepower Management Center Virtual Appliance 6.1.0
Cisco Firepower Management Center Virtual Appliance 6.2.0
Cisco Firepower Management Center Virtual Appliance 6.2.3
Cisco Sourcefire Defense Center 6.4.0
Cisco Sourcefire Defense Center 6.5.0
Cisco Sourcefire Defense Center 6.6.0
Cisco Firepower Threat Defense
Cisco Firepower Management Center Virtual Appliance 6.3.0
Cisco Sourcefire Defense Center 6.1.0
Cisco Sourcefire Defense Center 6.2.0
Cisco Sourcefire Defense Center 6.2.3
Cisco Sourcefire Defense Center 6.3.0
Cisco Sourcefire Defense Center 7.1.0
Cisco Firepower Management Center Virtual Appliance 7.1.0
Cisco Sourcefire Defense Center 6.6.1
Cisco Sourcefire Defense Center 6.7.0
Cisco Sourcefire Defense Center 7.0.0
Cisco Firepower Management Center Virtual Appliance 6.4.0
Cisco Firepower Management Center Virtual Appliance 6.5.0
Cisco Firepower Management Center Virtual Appliance 6.6.0
Cisco Firepower Management Center Virtual Appliance 6.6.1
Cisco Firepower Management Center Virtual Appliance 6.7.0
516
VMScore
CVE-2021-34764
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an malicious user to execute a cross-site scripting (XSS) attack or an open redirect attack. For more information about these vulnerabilities, see the De...
Cisco Firepower Management Center Virtual Appliance 6.1.0
Cisco Firepower Management Center Virtual Appliance 6.2.0
Cisco Firepower Management Center Virtual Appliance 6.2.3
Cisco Sourcefire Defense Center 6.4.0
Cisco Sourcefire Defense Center 6.5.0
Cisco Sourcefire Defense Center 6.6.0
Cisco Firepower Threat Defense
Cisco Firepower Management Center Virtual Appliance 6.3.0
Cisco Sourcefire Defense Center 6.1.0
Cisco Sourcefire Defense Center 6.2.0
Cisco Sourcefire Defense Center 6.2.3
Cisco Sourcefire Defense Center 6.3.0
Cisco Sourcefire Defense Center 7.1.0
Cisco Firepower Management Center Virtual Appliance 7.1.0
Cisco Sourcefire Defense Center 6.6.1
Cisco Sourcefire Defense Center 6.7.0
Cisco Sourcefire Defense Center 7.0.0
Cisco Firepower Management Center Virtual Appliance 6.4.0
Cisco Firepower Management Center Virtual Appliance 6.5.0
Cisco Firepower Management Center Virtual Appliance 6.6.0
Cisco Firepower Management Center Virtual Appliance 6.6.1
Cisco Firepower Management Center Virtual Appliance 6.7.0
694
VMScore
CVE-2019-1983
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote malicious user to cause repeated crashes in some internal process...
Cisco Content Security Management Appliance 11.4.0-812
Cisco Asyncos
Cisco Email Security Appliance 11.0.1-hp5-602
Cisco Email Security Appliance 11.1.0-404
1 Article
383
VMScore
CVE-2014-3289
Cross-site scripting (XSS) vulnerability in the web management interface in Cisco AsyncOS on the Email Security Appliance (ESA) 8.0, Web Security Appliance (WSA) 8.0 (.5 Hot Patch 1) and previous versions, and Content Security Management Appliance (SMA) 8.3 and previous versions ...
Cisco Ironport Asyncos
Cisco Web Security Appliance -
Cisco Content Security Management Appliance -
Cisco Ironport Asyncos 8.0
Cisco Email Security Appliance Firmware -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »