7.8
CVSSv2

CVE-2016-1382

Published: 25/05/2016 Updated: 01/12/2016
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 694
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Summary

Cisco AsyncOS prior to 8.5.3-069 and 8.6 up to and including 8.8 on Web Security Appliance (WSA) devices mishandles memory allocation for HTTP requests, which allows remote malicious users to cause a denial of service (proxy-process reload) via a crafted request, aka Bug ID CSCuu02529.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco web_security_appliance_\\(wsa\\) 6.0.0-000

cisco web_security_appliance_\\(wsa\\) 5.6.0-623

cisco web_security_appliance_\\(wsa\\) 8.5.0-497

cisco web_security_appliance_\\(wsa\\) 8.5.0.000

cisco web_security_appliance_\\(wsa\\) 7.1.2

cisco web_security_appliance_\\(wsa\\) 7.1.1

cisco web_security_appliance_\\(wsa\\) 8.5.3-055

cisco web_security_appliance_\\(wsa\\) 8.0.6-119

cisco web_security_appliance_\\(wsa\\) 8.5.2-024

cisco web_security_appliance_\\(wsa\\) 8.0.6

cisco web_security_appliance_\\(wsa\\) 8.0.5

cisco web_security_appliance_\\(wsa\\) 7.7.0-000

cisco web_security_appliance_\\(wsa\\) 7.5.0-000

cisco web_security_appliance_\\(wsa\\) 8.5.1-021

cisco web_security_appliance_\\(wsa\\) 7.7.1-000

cisco web_security_appliance_\\(wsa\\) 8.0.7-142

cisco web_security_appliance_\\(wsa\\) 8.0.8-mr-113

cisco web_security_appliance_\\(wsa\\) 8.0.0-000

cisco web_security_appliance_\\(wsa\\) 7.5.1-000

cisco web_security_appliance_\\(wsa\\) 7.1.0

cisco web_security_appliance_\\(wsa\\) 7.5.2-000

cisco web_security_appliance_\\(wsa\\) 7.5.0-825

cisco web_security_appliance_\\(wsa\\) 8.0.6-078

cisco web_security_appliance_\\(wsa\\) 8.0.7

cisco web_security_appliance_\\(wsa\\) 8.5.2-027

cisco web_security_appliance_\\(wsa\\) 7.1.4

cisco web_security_appliance_\\(wsa\\) 7.1.3