Cisco

Asyncos

53 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2024-20392

  • EPSS 0.24%
  • Published 15.05.2024 18:15:10
  • Last modified 06.08.2025 16:48:40

A vulnerability in the web-based management API of Cisco AsyncOS Software for Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack. This vulnerability is due to insufficient input...

6.1

CVE-2024-20258

  • EPSS 0.18%
  • Published 15.05.2024 18:15:09
  • Last modified 31.07.2025 19:44:11

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Email Gateway could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface. ...

8.4

CVE-2024-20383

  • EPSS 0.13%
  • Published 15.05.2024 18:15:09
  • Last modified 08.08.2025 13:15:28

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface. This vulnerability is du...

4.8

CVE-2024-20257

  • EPSS 0.13%
  • Published 15.05.2024 18:15:08
  • Last modified 06.08.2025 16:56:50

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email Gateway could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface.r This vulnerability is due to ins...

4.8

CVE-2024-20256

  • EPSS 0.13%
  • Published 15.05.2024 18:15:08
  • Last modified 07.08.2025 17:10:32

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Web Appliance could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface. ...

5.3

CVE-2020-26082

  • EPSS 0.07%
  • Published 04.08.2023 21:15:10
  • Last modified 21.11.2024 05:19:12

A vulnerability in the zip decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass content filters that are configured on an affected device. The vulnerabilit...

5.3

CVE-2023-20215

  • EPSS 0.07%
  • Published 03.08.2023 22:15:11
  • Last modified 21.11.2024 07:40:54

A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to bypass a configured rule, allowing traffic onto a network that should have been blocked. This vulne...

5.3

CVE-2022-20952

  • EPSS 0.13%
  • Published 01.03.2023 08:15:10
  • Last modified 21.11.2024 06:43:54

A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance, formerly known as Cisco Web Security Appliance (WSA), could allow an unauthenticated, remote attacker to bypass a configured rule, thereby allowing traf...

5.3

CVE-2023-20057

  • EPSS 0.07%
  • Published 20.01.2023 07:15:17
  • Last modified 21.11.2024 07:40:27

A vulnerability in the URL filtering mechanism of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the URL reputation filters on an affected device. This vulnerability is due...

6.5

CVE-2022-20942

  • EPSS 0.14%
  • Published 04.11.2022 18:15:11
  • Last modified 21.11.2024 06:43:52

A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA), Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance, formerly known as Cisco Web Security Appliance (WSA), could allow an authenticated, rem...