Cisco

Content Security Management Appliance

18 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2021-1516

  • EPSS 0.32%
  • Published 06.05.2021 13:15:10
  • Last modified 21.11.2024 05:44:31

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance (SMA), Cisco Email Security Appliance (ESA), and Cisco Web Security Appliance (WSA) could allow an authenticated, remote a...

7.2

CVE-2021-1447

  • EPSS 0.02%
  • Published 06.05.2021 13:15:10
  • Last modified 21.11.2024 05:44:23

A vulnerability in the user account management system of Cisco AsyncOS for Cisco Content Security Management Appliance (SMA) could allow an authenticated, local attacker to elevate their privileges to root. This vulnerability is due to a procedural f...

5.3

CVE-2021-1129

  • EPSS 0.36%
  • Published 20.01.2021 20:15:13
  • Last modified 21.11.2024 05:43:39

A vulnerability in the authentication for the general purpose APIs implementation of Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security Appliance (WSA) could allow an unauthenticated, remot...

4.7

CVE-2020-3117

  • EPSS 0.07%
  • Published 23.09.2020 01:15:14
  • Last modified 21.11.2024 05:30:21

A vulnerability in the API Framework of Cisco AsyncOS for Cisco Web Security Appliance (WSA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to inject crafted HTTP headers in the web server's resp...

7.8

CVE-2019-1983

  • EPSS 1.07%
  • Published 23.09.2020 01:15:14
  • Last modified 21.11.2024 04:37:49

A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to cause repeated crashes ...

6.5

CVE-2020-3447

  • EPSS 0.22%
  • Published 17.08.2020 18:15:13
  • Last modified 21.11.2024 05:31:05

A vulnerability in the CLI of Cisco AsyncOS for Cisco Email Security Appliance (ESA) and Cisco AsyncOS for Cisco Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to access sensitive information on an affected ...

6.1

CVE-2020-3178

  • EPSS 0.25%
  • Published 06.05.2020 17:15:11
  • Last modified 21.11.2024 05:30:29

Multiple vulnerabilities in the web-based GUI of Cisco AsyncOS Software for Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. The vulnerabilities are due to i...

5.3

CVE-2020-3164

  • EPSS 0.81%
  • Published 04.03.2020 19:15:12
  • Last modified 21.11.2024 05:30:27

A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated remote attacker ...

4.3

CVE-2019-12635

  • EPSS 0.1%
  • Published 05.09.2019 02:15:12
  • Last modified 21.11.2024 04:23:14

A vulnerability in the authorization module of Cisco Content Security Management Appliance (SMA) Software could allow an authenticated, remote attacker to gain out-of-scope access to email. The vulnerability exists because the affected software does ...

6.1

CVE-2018-15393

  • EPSS 0.09%
  • Published 08.11.2018 17:29:00
  • Last modified 21.11.2024 03:50:41

A vulnerability in the web-based management interface of Cisco Content Security Management Appliance (SMA) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based managem...