Cisco Web Security Appliance Vulnerabilities

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Version

8.5.0-497	4
8.5.3-051	4
10.5.1	4
10.1.0-204	4
8.5	4

Remediation

Official Fix	58
Temporary Fix	0
Workaround	2
Unavailable	0
Not Defined	12

Exploitability

High	4
Functional	0
Proof-of-Concept	0
Unproven	14
Not Defined	54

Access Vector

Not Defined	0
Physical	0
Local	8
Adjacent	0
Network	64

Authentication

Not Defined	0
High	2
Low	14
None	56

User Interaction

Not Defined	0
Required	12
None	60

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	12
≤6	18
≤7	16
≤8	18
≤9	6
≤10	2

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	4
≤5	12
≤6	16
≤7	16
≤8	18
≤9	6
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	4
≤5	10
≤6	20
≤7	2
≤8	28
≤9	6
≤10	2

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	12
≤7	4
≤8	20
≤9	0
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	10
≤7	0
≤8	0
≤9	4
≤10	0

Vendor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	4
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	0
<2k	0
<5k	0
<10k	4
<25k	42
<50k	26
<100k	0
≥100k	0

Exploit Today

<1k	48
<2k	4
<5k	6
<10k	6
<25k	8
<50k	0
<100k	0
≥100k	0

Exploit Market Volume

🔴 CTI Activities

Affected Versions (55): 7.1, 7.5, 7.5.2-201, 7.5.2-HP2-303, 7.5.7.7, 7.6.3-025, 7.7, 7.7.0-608, 7.7.5-835, 7.9.1-102, 8.0, 8.0.0-404, 8.0.1-023, 8.0.6-078, 8.0.6-115, 8.0.7, 8.0.7-142, 8.1.1-013, 8.2.0-222, 8.3.6-048, 8.5, 8.5.0-, 8.5.0-497, 8.5.0-ER1-198, 8.5.0-ise-147, 8.5.1-021, 8.5.3-051, 8.5.3-055, 8.5.3-069, 8.5.6-113, 8.5.7-042, 8.6, 8.7, 8.8, 8.8.0-, 9.0.0-485, 9.0.1-162, 9.1, 9.1.0-, 9.1.0-032, 9.1.1-, 9.1.1-074, 9.1.2-01, 9.5.0-235, 9.5.0-444, 9.6.0-, 9.9.9-894, 10.0.0-203, 10.1, 10.1.0-204, 10.5, 10.5.1, 10.5.2, 11, WSA10.0.0-233

Link to Product Website: https://www.cisco.com/

Software Type: Anti-Malware Software

Published	Base	Temp	Vulnerability	0day	Today	Exp	Rem	CTI	CVE
04/07/2022	4.4	4.4	Cisco Web Security Appliance Web-based Management Interface cross site scripting	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-20781
04/07/2022	6.6	6.4	Cisco Web Security Appliance Web-Based Reputation Score Engine access control	$25k-$100k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-20784
04/07/2022	5.3	5.2	Cisco Email Security Appliance Service Port 199 denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-20675
10/07/2021	6.9	6.8	Cisco Web Security Appliance HTTPS Connection memory leak	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2021-34698
08/19/2021	7.3	7.0	Cisco Web Security Appliance SNI Filter access control	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.03	CVE-2021-34749
07/09/2021	8.8	8.4	Cisco Web Security Appliance Web Interface command injection	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00	CVE-2021-1359
06/17/2021	5.6	5.4	Cisco Email Security Appliance/Web Security Appliance Advanced Malware Protection certificate validation	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-1566
05/06/2021	4.3	4.1	Cisco Web Security Appliance Web-based Management Interface cross site scripting	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2021-1490
01/21/2021	4.1	4.0	Cisco Web Security Appliance Web-based Management Interface cross site scripting	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-1271
01/21/2021	5.3	5.1	Cisco Email Security Appliance insertion of sensitive information into sent data	$25k-$100k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-1129

61 more entries are not shown

🔒 Login Required

You need to signup and login to see more of the remaining 61 results.

more entries by Cisco

◂ PreviousOverviewNext ▸

Do you need the next level of professionalism?

Upgrade your account now!