CVE-2016-1288
- EPSS 0.45%
- Veröffentlicht 03.03.2016 22:59:12
- Zuletzt bearbeitet 12.04.2025 10:46:40
The HTTPS Proxy feature in Cisco AsyncOS before 8.5.3-051 and 9.x before 9.0.0-485 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (service outage) by leveraging certain intranet connectivity and sending a...
CVE-2015-4288
- EPSS 0.14%
- Veröffentlicht 29.07.2015 01:59:06
- Zuletzt bearbeitet 12.04.2025 10:46:40
The LDAP implementation on the Cisco Web Security Appliance (WSA) 8.5.0-000, Email Security Appliance (ESA) 8.5.7-042, and Content Security Management Appliance (SMA) 8.3.6-048 does not verify X.509 certificates from SSL servers, which allows man-in-...
CVE-2015-4198
- EPSS 0.42%
- Veröffentlicht 20.06.2015 14:59:01
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cross-site scripting (XSS) vulnerability in the web framework on Cisco Web Security Appliance (WSA) devices with software 8.5.0-497 allows remote attackers to inject arbitrary web script or HTML via an unspecified HTTP header, aka Bug ID CSCuu24409.
CVE-2015-0738
- EPSS 0.26%
- Veröffentlicht 17.05.2015 01:59:02
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cross-site scripting (XSS) vulnerability in the Web Tracking Report page on Cisco Web Security Appliance (WSA) devices 8.5.0-497 allows remote attackers to inject arbitrary web script or HTML via an unspecified field, aka Bug ID CSCuu16008.