Cisco

Content Security Management Appliance

18 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2017-6783

  • EPSS 0.28%
  • Published 17.08.2017 20:29:00
  • Last modified 20.04.2025 01:37:25

A vulnerability in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to discover confidential information about the a...

6.1

CVE-2017-6661

  • EPSS 0.3%
  • Published 13.06.2017 06:29:00
  • Last modified 20.04.2025 01:37:25

A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against...

5.9

CVE-2016-1411

  • EPSS 0.22%
  • Published 14.12.2016 00:59:00
  • Last modified 12.04.2025 10:46:40

A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SMA) could allow an unauthenticated, remote attacker ...

5.9

CVE-2016-6416

  • EPSS 0.89%
  • Published 05.10.2016 17:59:05
  • Last modified 12.04.2025 10:46:40

The FTP service in Cisco AsyncOS on Email Security Appliance (ESA) devices 9.6.0-000 through 9.9.6-026, Web Security Appliance (WSA) devices 9.0.0-162 through 9.5.0-444, and Content Security Management Appliance (SMA) devices allows remote attackers ...

7.5

CVE-2016-2183

Media report
  • EPSS 40.02%
  • Published 01.09.2016 00:59:00
  • Last modified 12.04.2025 10:46:40

The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birth...

7.8

CVE-2015-6321

  • EPSS 1%
  • Published 06.11.2015 03:59:03
  • Last modified 12.04.2025 10:46:40

Cisco AsyncOS before 8.5.7-042, 9.x before 9.1.0-032, 9.1.x before 9.1.1-023, and 9.5.x and 9.6.x before 9.6.0-042 on Email Security Appliance (ESA) devices; before 9.1.0-032, 9.1.1 before 9.1.1-005, and 9.5.x before 9.5.0-025 on Content Security Man...

5

CVE-2015-6288

  • EPSS 0.71%
  • Published 14.09.2015 01:59:06
  • Last modified 12.04.2025 10:46:40

Cisco Content Security Management Appliance (SMA) 7.8.0-000 does not properly validate credentials, which allows remote attackers to cause a denial of service (rapid log-file rollover and application fault) via crafted HTTP requests, aka Bug ID CSCuw...

5.5

CVE-2015-4322

  • EPSS 0.17%
  • Published 19.08.2015 15:59:05
  • Last modified 12.04.2025 10:46:40

Cisco Content Security Management Appliance (SMA) 8.3.6-039, 9.1.0-31, and 9.1.0-103 improperly restricts the privileges available after LDAP authentication, which allows remote authenticated users to read or write to an arbitrary user's Spam Quarant...