Cisco

Asyncos

53 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2024-20392

  • EPSS 0.24%
  • Veröffentlicht 15.05.2024 18:15:10
  • Zuletzt bearbeitet 06.08.2025 16:48:40

A vulnerability in the web-based management API of Cisco AsyncOS Software for Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack. This vulnerability is due to insufficient input...

6.1

CVE-2024-20258

  • EPSS 0.18%
  • Veröffentlicht 15.05.2024 18:15:09
  • Zuletzt bearbeitet 31.07.2025 19:44:11

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Email Gateway could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface. ...

8.4

CVE-2024-20383

  • EPSS 0.13%
  • Veröffentlicht 15.05.2024 18:15:09
  • Zuletzt bearbeitet 08.08.2025 13:15:28

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface. This vulnerability is du...

4.8

CVE-2024-20257

  • EPSS 0.13%
  • Veröffentlicht 15.05.2024 18:15:08
  • Zuletzt bearbeitet 06.08.2025 16:56:50

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email Gateway could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface.r This vulnerability is due to ins...

4.8

CVE-2024-20256

  • EPSS 0.13%
  • Veröffentlicht 15.05.2024 18:15:08
  • Zuletzt bearbeitet 07.08.2025 17:10:32

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Web Appliance could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface. ...

5.3

CVE-2020-26082

  • EPSS 0.07%
  • Veröffentlicht 04.08.2023 21:15:10
  • Zuletzt bearbeitet 21.11.2024 05:19:12

A vulnerability in the zip decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass content filters that are configured on an affected device. The vulnerabilit...

5.3

CVE-2023-20215

  • EPSS 0.07%
  • Veröffentlicht 03.08.2023 22:15:11
  • Zuletzt bearbeitet 21.11.2024 07:40:54

A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to bypass a configured rule, allowing traffic onto a network that should have been blocked. This vulne...

5.3

CVE-2022-20952

  • EPSS 0.13%
  • Veröffentlicht 01.03.2023 08:15:10
  • Zuletzt bearbeitet 21.11.2024 06:43:54

A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance, formerly known as Cisco Web Security Appliance (WSA), could allow an unauthenticated, remote attacker to bypass a configured rule, thereby allowing traf...

5.3

CVE-2023-20057

  • EPSS 0.07%
  • Veröffentlicht 20.01.2023 07:15:17
  • Zuletzt bearbeitet 21.11.2024 07:40:27

A vulnerability in the URL filtering mechanism of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the URL reputation filters on an affected device. This vulnerability is due...

6.5

CVE-2022-20942

  • EPSS 0.14%
  • Veröffentlicht 04.11.2022 18:15:11
  • Zuletzt bearbeitet 21.11.2024 06:43:52

A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA), Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance, formerly known as Cisco Web Security Appliance (WSA), could allow an authenticated, rem...