Multiple vulnerabilities in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager; Cisco Secure Email Gateway, formerly Cisco Email Security Appliance (ESA); and Cisco Secure Web Appliance, formerly Cisco Web Security Appliance (WSA), could allow a remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. For more information about these vulnerabilities, see the Details section of this advisory.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cisco secure email gateway 14.0.1-053 |
||
cisco web security appliance 14.0.1-053 |
||
cisco secure email and web manager 14.0.1-053 |
||
cisco secure email and web manager 15.0.0-256 |
||
cisco secure email gateway 15.0.0-256 |
||
cisco web security appliance 15.0.0-256 |
||
cisco secure email and web manager 14.0.1-033 |
||
cisco secure email gateway 14.0.1-033 |
||
cisco web security appliance 14.0.1-033 |
||
cisco secure email and web manager 14.0.0-418 |
||
cisco secure email gateway 14.0.0-418 |
||
cisco web security appliance 14.0.0-418 |
||
cisco secure email and web manager 15.0.0-050 |
||
cisco secure email gateway 15.0.0-050 |
||
cisco web security appliance 15.0.0-050 |
Vulmon