Cisco

Email Security Appliance Firmware

26 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2022-20772

  • EPSS 0.17%
  • Published 04.11.2022 18:15:10
  • Last modified 21.11.2024 06:43:31

A vulnerability in Cisco Email Security Appliance (ESA) and Cisco Secure Email and Web Manager could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack. This vulnerability is due to the failure of the applicatio...

7.1

CVE-2019-15961

Exploit
  • EPSS 2.22%
  • Published 15.01.2020 19:15:13
  • Last modified 21.11.2024 04:29:49

A vulnerability in the email parsing module Clam AntiVirus (ClamAV) Software versions 0.102.0, 0.101.4 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to...

5.3

CVE-2019-15988

  • EPSS 0.34%
  • Published 26.11.2019 04:15:11
  • Last modified 21.11.2024 04:29:52

A vulnerability in the antispam protection mechanisms of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the URL reputation filters on an affected device. The vulnerability is ...

4.3

CVE-2019-15971

  • EPSS 0.17%
  • Published 26.11.2019 04:15:11
  • Last modified 21.11.2024 04:29:50

A vulnerability in the MP3 detection engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured content filters on the device. The vulnerability is due to improper va...

7.5

CVE-2019-12706

  • EPSS 0.39%
  • Published 02.10.2019 19:15:13
  • Last modified 21.11.2024 04:23:24

A vulnerability in the Sender Policy Framework (SPF) functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the configured user filters on an affected device. The vul...

7.5

CVE-2019-1955

  • EPSS 0.22%
  • Published 08.08.2019 08:15:12
  • Last modified 21.11.2024 04:37:45

A vulnerability in the Sender Policy Framework (SPF) functionality of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to bypass configured user filters on the device. The vulnerability ...

8.6

CVE-2018-15453

  • EPSS 0.29%
  • Published 10.01.2019 18:29:00
  • Last modified 21.11.2024 03:50:50

A vulnerability in the Secure/Multipurpose Internet Mail Extensions (S/MIME) Decryption and Verification or S/MIME Public Key Harvesting features of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remot...

6.5

CVE-2018-0140

  • EPSS 0.46%
  • Published 08.02.2018 07:29:01
  • Last modified 21.11.2024 03:37:35

A vulnerability in the spam quarantine of Cisco Email Security Appliance and Cisco Content Security Management Appliance could allow an authenticated, remote attacker to download any message from the spam quarantine by modifying browser string inform...

5.3

CVE-2017-12309

  • EPSS 0.98%
  • Published 16.11.2017 07:29:00
  • Last modified 20.04.2025 01:37:25

A vulnerability in the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to conduct a HTTP response splitting attack. The vulnerability is due to the failure of the application or its environment to properly sanitiz...

5.8

CVE-2017-3827

  • EPSS 0.36%
  • Published 22.02.2017 02:59:00
  • Last modified 20.04.2025 01:37:25

A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauthenticated, remote attacker to bypass configured use...