Cisco

Content Security Management Appliance

18 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2017-6783

  • EPSS 0.28%
  • Veröffentlicht 17.08.2017 20:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

A vulnerability in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to discover confidential information about the a...

6.1

CVE-2017-6661

  • EPSS 0.3%
  • Veröffentlicht 13.06.2017 06:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against...

5.9

CVE-2016-1411

  • EPSS 0.22%
  • Veröffentlicht 14.12.2016 00:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SMA) could allow an unauthenticated, remote attacker ...

5.9

CVE-2016-6416

  • EPSS 0.89%
  • Veröffentlicht 05.10.2016 17:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The FTP service in Cisco AsyncOS on Email Security Appliance (ESA) devices 9.6.0-000 through 9.9.6-026, Web Security Appliance (WSA) devices 9.0.0-162 through 9.5.0-444, and Content Security Management Appliance (SMA) devices allows remote attackers ...

7.5

CVE-2016-2183

Medienbericht
  • EPSS 40.02%
  • Veröffentlicht 01.09.2016 00:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birth...

7.8

CVE-2015-6321

  • EPSS 1%
  • Veröffentlicht 06.11.2015 03:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco AsyncOS before 8.5.7-042, 9.x before 9.1.0-032, 9.1.x before 9.1.1-023, and 9.5.x and 9.6.x before 9.6.0-042 on Email Security Appliance (ESA) devices; before 9.1.0-032, 9.1.1 before 9.1.1-005, and 9.5.x before 9.5.0-025 on Content Security Man...

5

CVE-2015-6288

  • EPSS 0.71%
  • Veröffentlicht 14.09.2015 01:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco Content Security Management Appliance (SMA) 7.8.0-000 does not properly validate credentials, which allows remote attackers to cause a denial of service (rapid log-file rollover and application fault) via crafted HTTP requests, aka Bug ID CSCuw...

5.5

CVE-2015-4322

  • EPSS 0.17%
  • Veröffentlicht 19.08.2015 15:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco Content Security Management Appliance (SMA) 8.3.6-039, 9.1.0-31, and 9.1.0-103 improperly restricts the privileges available after LDAP authentication, which allows remote authenticated users to read or write to an arbitrary user's Spam Quarant...