Cisco

Email Security Appliance Firmware

26 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2022-20772

  • EPSS 0.17%
  • Veröffentlicht 04.11.2022 18:15:10
  • Zuletzt bearbeitet 21.11.2024 06:43:31

A vulnerability in Cisco Email Security Appliance (ESA) and Cisco Secure Email and Web Manager could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack. This vulnerability is due to the failure of the applicatio...

7.1

CVE-2019-15961

Exploit
  • EPSS 2.22%
  • Veröffentlicht 15.01.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:29:49

A vulnerability in the email parsing module Clam AntiVirus (ClamAV) Software versions 0.102.0, 0.101.4 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to...

5.3

CVE-2019-15988

  • EPSS 0.34%
  • Veröffentlicht 26.11.2019 04:15:11
  • Zuletzt bearbeitet 21.11.2024 04:29:52

A vulnerability in the antispam protection mechanisms of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the URL reputation filters on an affected device. The vulnerability is ...

4.3

CVE-2019-15971

  • EPSS 0.17%
  • Veröffentlicht 26.11.2019 04:15:11
  • Zuletzt bearbeitet 21.11.2024 04:29:50

A vulnerability in the MP3 detection engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured content filters on the device. The vulnerability is due to improper va...

7.5

CVE-2019-12706

  • EPSS 0.39%
  • Veröffentlicht 02.10.2019 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:23:24

A vulnerability in the Sender Policy Framework (SPF) functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the configured user filters on an affected device. The vul...

7.5

CVE-2019-1955

  • EPSS 0.22%
  • Veröffentlicht 08.08.2019 08:15:12
  • Zuletzt bearbeitet 21.11.2024 04:37:45

A vulnerability in the Sender Policy Framework (SPF) functionality of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to bypass configured user filters on the device. The vulnerability ...

8.6

CVE-2018-15453

  • EPSS 0.29%
  • Veröffentlicht 10.01.2019 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:50

A vulnerability in the Secure/Multipurpose Internet Mail Extensions (S/MIME) Decryption and Verification or S/MIME Public Key Harvesting features of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remot...

6.5

CVE-2018-0140

  • EPSS 0.46%
  • Veröffentlicht 08.02.2018 07:29:01
  • Zuletzt bearbeitet 21.11.2024 03:37:35

A vulnerability in the spam quarantine of Cisco Email Security Appliance and Cisco Content Security Management Appliance could allow an authenticated, remote attacker to download any message from the spam quarantine by modifying browser string inform...

5.3

CVE-2017-12309

  • EPSS 0.98%
  • Veröffentlicht 16.11.2017 07:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

A vulnerability in the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to conduct a HTTP response splitting attack. The vulnerability is due to the failure of the application or its environment to properly sanitiz...

5.8

CVE-2017-3827

  • EPSS 0.36%
  • Veröffentlicht 22.02.2017 02:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauthenticated, remote attacker to bypass configured use...