Cisco

Secure Email

12 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2025-20153

  • EPSS 0.09%
  • Veröffentlicht 19.02.2025 16:15:40
  • Zuletzt bearbeitet 31.07.2025 12:40:47

A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to bypass the configured rules and allow emails that should have been denied to flow through an affected device.   ...

4.3

CVE-2025-20207

  • EPSS 0.09%
  • Veröffentlicht 05.02.2025 17:15:26
  • Zuletzt bearbeitet 05.02.2025 17:15:26

A vulnerability in Simple Network Management Protocol (SNMP) polling for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an authenticated, remote attacker to obtain confidential information a...

4.8

CVE-2025-20180

  • EPSS 0.07%
  • Veröffentlicht 05.02.2025 17:15:25
  • Zuletzt bearbeitet 15.08.2025 20:36:40

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Email Gateway could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack agains...

7.2

CVE-2025-20184

  • EPSS 0.2%
  • Veröffentlicht 05.02.2025 17:15:25
  • Zuletzt bearbeitet 08.08.2025 17:11:23

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Web Appliance could allow an authenticated, remote attacker to perform command injection attacks against an affected devic...

6.7

CVE-2025-20185

  • EPSS 0.03%
  • Veröffentlicht 05.02.2025 17:15:25
  • Zuletzt bearbeitet 06.08.2025 16:53:52

A vulnerability in the implementation of the remote access functionality of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an authenticated, local attacker to elev...

7.5

CVE-2020-3548

  • EPSS 0.18%
  • Veröffentlicht 18.11.2024 16:15:08
  • Zuletzt bearbeitet 31.07.2025 17:17:22

A vulnerability in the Transport Layer Security (TLS) protocol implementation of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to cause high CPU usage on an affected device, ...

5.4

CVE-2024-20504

  • EPSS 0.14%
  • Veröffentlicht 06.11.2024 17:15:16
  • Zuletzt bearbeitet 07.08.2025 19:08:29

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance could allow an authenticated, remote attacker to conduct a stored cross-site script...

7.2

CVE-2024-20429

  • EPSS 0.08%
  • Veröffentlicht 17.07.2024 17:15:14
  • Zuletzt bearbeitet 08.08.2025 01:56:39

A vulnerability in the web-based management interface of Cisco AsyncOS for Secure Email Gateway could allow an authenticated, remote attacker to execute arbitrary system commands on an affected device. This vulnerability is due to insufficient inp...

9.8

CVE-2024-20401

  • EPSS 11.83%
  • Veröffentlicht 17.07.2024 17:15:13
  • Zuletzt bearbeitet 31.07.2025 17:06:38

A vulnerability in the content scanning and message filtering features of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to overwrite arbitrary files on the underlying operating system. This vulnerability is due to impr...

6.1

CVE-2024-20392

  • EPSS 0.24%
  • Veröffentlicht 15.05.2024 18:15:10
  • Zuletzt bearbeitet 06.08.2025 16:48:40

A vulnerability in the web-based management API of Cisco AsyncOS Software for Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack. This vulnerability is due to insufficient input...