7.8
CVE-2016-1380
- EPSS 0.56%
- Veröffentlicht 25.05.2016 01:59:04
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle psirt@cisco.com
- CVE-Watchlists
- Unerledigt
LoginCisco AsyncOS 8.0 before 8.0.6-119 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (proxy-process hang) via a crafted HTTP POST request, aka Bug ID CSCuo12171.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Web Security Appliance Version8.0.0-000
Cisco ≫ Web Security Appliance Version8.0.5
Cisco ≫ Web Security Appliance Version8.0.6
Cisco ≫ Web Security Appliance Version8.0.6-078
Cisco ≫ Web Security Appliance Version8.0.6-119
Cisco ≫ Web Security Appliance Version8.0.7
Cisco ≫ Web Security Appliance Version8.0.7-142
Cisco ≫ Web Security Appliance Version8.0.8-mr-113
Cisco ≫ Web Security Appliance Version8.5.0-000
Cisco ≫ Web Security Appliance Version8.5.0-497
Cisco ≫ Web Security Appliance Version8.5.1-021
Cisco ≫ Web Security Appliance Version8.5.2-024
Cisco ≫ Web Security Appliance Version8.5.2-027
Cisco ≫ Web Security Appliance Version8.5.3-055
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.56% | 0.675 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.