CVE-2015-0732
- EPSS 0.3%
- Veröffentlicht 29.07.2015 01:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cross-site scripting (XSS) vulnerability in Cisco AsyncOS on the Web Security Appliance (WSA) 9.0.0-193; Email Security Appliance (ESA) 8.5.6-113, 9.1.0-032, 9.1.1-000, and 9.6.0-000; and Content Security Management Appliance (SMA) 9.1.0-033 allows r...
CVE-2015-0698
- EPSS 0.26%
- Veröffentlicht 15.04.2015 10:59:04
- Zuletzt bearbeitet 12.04.2025 10:46:40
Multiple cross-site scripting (XSS) vulnerabilities in filter search forms in admin web pages on Cisco Web Security Appliance (WSA) devices with software 8.5.0-497 allow remote attackers to inject arbitrary web script or HTML via a crafted URL, aka B...
CVE-2015-0693
- EPSS 0.09%
- Veröffentlicht 15.04.2015 10:59:01
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cisco Web Security Appliance (WSA) devices with software 8.5.0-ise-147 do not properly restrict use of the pickle Python module during certain tunnel-status checks, which allows local users to execute arbitrary Python code and gain privileges via a c...
CVE-2015-0692
- EPSS 0.09%
- Veröffentlicht 11.04.2015 01:59:02
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cisco Web Security Appliance (WSA) devices with software 8.5.0-ise-147 do not properly restrict use of the pickle Python module during certain tunnel-status checks, which allows local users to execute arbitrary Python code and gain privileges via cra...