Cisco Web Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

7.75
8.05
8.54
8.64
9.0(2)4

Contromisure

Official Fix85
Temporary Fix0
Workaround1
Unavailable1
Not Defined23

Sfruttabilità

High4
Functional0
Proof-of-Concept1
Unproven15
Not Defined90

Accesso al vettore

Not Defined0
Physical0
Local7
Adjacent1
Network102

Autenticazione

Not Defined0
High6
Low24
None80

Interazione dell'utente

Not Defined0
Required21
None89

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤30
≤42
≤520
≤634
≤721
≤825
≤96
≤102

CVSSv3 Temp

≤10
≤20
≤30
≤45
≤523
≤632
≤724
≤819
≤96
≤101

VulDB

≤10
≤20
≤31
≤45
≤527
≤628
≤78
≤833
≤96
≤102

NVD

≤10
≤20
≤30
≤40
≤55
≤615
≤711
≤821
≤93
≤100

CNA

≤10
≤20
≤30
≤40
≤54
≤612
≤74
≤81
≤94
≤101

Fornitore

≤10
≤20
≤30
≤40
≤50
≤62
≤72
≤81
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k0
<5k0
<10k18
<25k64
<50k25
<100k3
≥100k0

Exploiter aujourd'hui

<1k60
<2k14
<5k16
<10k10
<25k9
<50k1
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (76): 3.0.1, 3.0.1.1, 3.0.1.2, 3.0.1.3, 3.0.1.4, 3.0.1.5, 3.0.1.6, 3.3.0 Build 31, 7.0, 7.1, 7.2, 7.3, 7.4, 7.5, 7.5.2-201, 7.5.2-HP2-303, 7.5.7.7, 7.6, 7.6.3-025, 7.7, 7.7.0-608, 7.7.5-835, 7.9.1-102, 8.0, 8.0.0-404, 8.0.1-023, 8.0.6-078, 8.0.6-115, 8.0.7, 8.0.7-142, 8.1, 8.1.1-013, 8.2, 8.2.0-222, 8.3, 8.3.6-048, 8.4, 8.5, 8.5.0-, 8.5.0-497, 8.5.0-ER1-198, 8.5.0-ise-147, 8.5.1-021, 8.5.3-051, 8.5.3-055, 8.5.3-069, 8.5.6-113, 8.5.7-042, 8.6, 8.7, 8.8, 8.8.0-, 9.0(2), 9.0.0-485, 9.0.1, 9.0.1-162, 9.0.2, 9.1, 9.1.0-, 9.1.0-032, 9.1.1-, 9.1.1-074, 9.1.2-01, 9.5.0-235, 9.5.0-444, 9.6.0-, 9.9.9-894, 10.0.0-203, 10.1, 10.1.0-204, 10.5, 10.5.1, 10.5.2, 11, 11.0(1), WSA10.0.0-233

Link to Product Website: https://www.cisco.com/

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
02/08/20235.55.4Cisco Secure Web Appliance Content Encoding Filter escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-20215
22/06/20235.05.0Cisco Secure Email Web-based Management Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20120
22/06/20235.25.1Cisco Secure Email/Web Manager Web-based Management Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20119
22/06/20234.44.4Cisco Secure Email/Web Manager/Secure Web Appliance cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-20028
01/03/20235.55.4Cisco Webex App for Web cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20104
15/02/20235.85.7Cisco ESA/Secure Email and Web Manager Web UI/CLI escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20075
15/02/20236.16.1Cisco ESA/Secure Email and Web Manager Web UI/CLI escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20009
02/11/20225.85.7Cisco Secure Email and Web Manager escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20772
02/11/20225.45.3Cisco Email Security Appliance HTTP request rivelazione di un 'informazione$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20942
02/11/20226.66.5Cisco ESA/Secure Email and Web Manager Next-generation UI Management Interface crittografia debole$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20868
02/11/20225.55.5Cisco ESA sql injection$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20867
06/10/20227.37.0Cisco Secure Web Appliance Scanning Engine escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20952
19/08/20228.88.4Cisco Secure Web Appliance HTTP escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20871
16/06/20229.89.6Cisco Secure Email and Web Manager Web-based Management Interface autenticazione debole$25k-$100k$5k-$25kNot DefinedOfficial Fix0.02CVE-2022-20798
16/06/20226.05.9Cisco Secure Email and Web Manager Web Management Interface rivelazione di un 'informazione$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20664
22/04/20223.83.7Cisco Umbrella Secure Web Gateway SSL Encryption escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20805
07/04/20224.44.4Cisco Web Security Appliance Web-based Management Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20781
07/04/20226.66.4Cisco Web Security Appliance Web-Based Reputation Score Engine escalazione di privilegi$25k-$100k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20784
07/04/20225.35.2Cisco Email Security Appliance Service Port 199 denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20675
10/02/20225.55.4Cisco Umbrella Secure Web Gateway File Inspection escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20738
07/10/20216.96.8Cisco Web Security Appliance HTTPS Connection denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-34698
19/08/20217.37.0Cisco Web Security Appliance SNI Filter escalazione di privilegi$25k-$100k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-34749
19/08/20216.36.0Cisco Secure Email and Web Manager Spam Quarantine escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-1561
09/07/20218.88.4Cisco Web Security Appliance Web Interface escalazione di privilegi$25k-$100k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-1359
17/06/20215.65.4Cisco Email Security Appliance/Web Security Appliance Advanced Malware Protection autenticazione debole$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-1566

85 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 85 results.

altre voci di Cisco

PrecedenteVisione D'insiemeIl prossimo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!