CVE-2015-0732
- EPSS 0.3%
- Veröffentlicht 29.07.2015 01:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
Cross-site scripting (XSS) vulnerability in Cisco AsyncOS on the Web Security Appliance (WSA) 9.0.0-193; Email Security Appliance (ESA) 8.5.6-113, 9.1.0-032, 9.1.1-000, and 9.6.0-000; and Content Security Management Appliance (SMA) 9.1.0-033 allows r...
CVE-2015-0698
- EPSS 0.35%
- Veröffentlicht 15.04.2015 10:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple cross-site scripting (XSS) vulnerabilities in filter search forms in admin web pages on Cisco Web Security Appliance (WSA) devices with software 8.5.0-497 allow remote attackers to inject arbitrary web script or HTML via a crafted URL, aka B...
CVE-2015-0693
- EPSS 0.12%
- Veröffentlicht 15.04.2015 10:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
Cisco Web Security Appliance (WSA) devices with software 8.5.0-ise-147 do not properly restrict use of the pickle Python module during certain tunnel-status checks, which allows local users to execute arbitrary Python code and gain privileges via a c...
CVE-2015-0692
- EPSS 0.12%
- Veröffentlicht 11.04.2015 01:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
Cisco Web Security Appliance (WSA) devices with software 8.5.0-ise-147 do not properly restrict use of the pickle Python module during certain tunnel-status checks, which allows local users to execute arbitrary Python code and gain privileges via cra...