The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices prior to 7.1.3-013, 7.5 prior to 7.5.0-838, and 7.7 prior to 7.7.0-550 allows remote authenticated users to execute arbitrary commands via crafted command-line input in a URL sent over IPv4, aka Bug ID CSCzv69294.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ironport_asyncos 7.7 |
||
cisco ironport_asyncos 7.5 |
||
cisco ironport_asyncos |