Cisco Web Security Luki w zabezpieczeniach

Wersja

8.5.0-497	6
7.7	6
8.5.3-051	4
9.1.1-074	4
10.1.0-204	4

Przeciwdziałanie

Official Fix	58
Temporary Fix	0
Workaround	2
Unavailable	0
Not Defined	16

Wykorzystywanie

High	0
Functional	0
Proof-of-Concept	0
Unproven	14
Not Defined	62

Wektor dostępu

Not Defined	0
Physical	0
Local	8
Adjacent	0
Network	68

Uwierzytelnianie

Not Defined	0
High	2
Low	12
None	62

Interakcja z użytkownikiem

Not Defined	0
Required	12
None	64

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	12
≤6	16
≤7	22
≤8	22
≤9	4
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	4
≤5	12
≤6	16
≤7	20
≤8	22
≤9	2
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	4
≤5	10
≤6	22
≤7	6
≤8	30
≤9	4
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	4
≤6	10
≤7	6
≤8	24
≤9	2
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	6
≤7	0
≤8	0
≤9	6
≤10	0

Sprzedawca

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	4
≤7	2
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	0
<2k	0
<5k	0
<10k	4
<25k	46
<50k	24
<100k	2
≥100k	0

Wykorzystaj dzisiaj

<1k	44
<2k	6
<5k	10
<10k	4
<25k	12
<50k	0
<100k	0
≥100k	0

Affected Versions (63): 3.0.1, 3.0.1.1, 3.0.1.2, 3.0.1.3, 3.0.1.4, 3.0.1.5, 3.0.1.6, 7.1, 7.5, 7.5.2-201, 7.5.2-HP2-303, 7.5.7.7, 7.6.3-025, 7.7, 7.7.0-608, 7.7.5-835, 7.9.1-102, 8.0, 8.0.0-404, 8.0.1-023, 8.0.6-078, 8.0.6-115, 8.0.7, 8.0.7-142, 8.1.1-013, 8.2.0-222, 8.3, 8.3.6-048, 8.5, 8.5.0-, 8.5.0-497, 8.5.0-ER1-198, 8.5.0-ise-147, 8.5.1-021, 8.5.3-051, 8.5.3-055, 8.5.3-069, 8.5.6-113, 8.5.7-042, 8.6, 8.7, 8.8, 8.8.0-, 9.0.0-485, 9.0.1-162, 9.1, 9.1.0-, 9.1.0-032, 9.1.1-, 9.1.1-074, 9.1.2-01, 9.5.0-235, 9.5.0-444, 9.6.0-, 9.9.9-894, 10.0.0-203, 10.1, 10.1.0-204, 10.5, 10.5.1, 10.5.2, 11, WSA10.0.0-233

Link to Product Website: https://www.cisco.com/

Typ oprogramowania: Anti-Malware Software

Opublikowano	Base	Temp	Słaby punkt	0day	Dzisiaj	Wyk	Prz	CVE
2022-04-07	4.4	4.4	Cisco Web Security Appliance Web-based Management Interface cross site scripting	$5k-$25k	$0-$5k	Not Defined	Official Fix	CVE-2022-20781
2022-04-07	6.6	6.4	Cisco Web Security Appliance Web-Based Reputation Score Engine privilege escalation	$25k-$100k	$5k-$25k	Not Defined	Official Fix	CVE-2022-20784
2022-04-07	5.3	5.2	Cisco Email Security Appliance Service Port 199 denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	CVE-2022-20675
2021-10-07	6.9	6.8	Cisco Web Security Appliance HTTPS Connection denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	CVE-2021-34698
2021-08-19	7.3	7.0	Cisco Web Security Appliance SNI Filter privilege escalation	$25k-$100k	$0-$5k	Not Defined	Official Fix	CVE-2021-34749
2021-07-09	8.8	8.4	Cisco Web Security Appliance Web Interface privilege escalation	$25k-$100k	$5k-$25k	Not Defined	Official Fix	CVE-2021-1359
2021-06-17	5.6	5.4	Cisco Email Security Appliance/Web Security Appliance Advanced Malware Protection weak authentication	$5k-$25k	$0-$5k	Not Defined	Official Fix	CVE-2021-1566
2021-05-06	4.3	4.1	Cisco Web Security Appliance Web-based Management Interface cross site scripting	$5k-$25k	$0-$5k	Not Defined	Official Fix	CVE-2021-1490
2021-01-21	4.1	4.0	Cisco Web Security Appliance Web-based Management Interface cross site scripting	$5k-$25k	$0-$5k	Not Defined	Official Fix	CVE-2021-1271
2021-01-21	5.3	5.1	Cisco Email Security Appliance privilege escalation	$25k-$100k	$5k-$25k	Not Defined	Official Fix	CVE-2021-1129

65 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 65 results.

więcej wpisów autorstwa Cisco

◂ PoprzedniPrzeglądKolejny ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!