The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Cisco Secure Web Appliance

Cisco Web Security Appliance: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco Web Security Appliance, in order to run JavaScript code in the context of the web site...
CERTFR-2021-AVI-052, cisco-sa-wsa-xss-RuB5WGqL, CSCvu22019, CSCvv27761, CVE-2021-1271, VIGILANCE-VUL-34393
Cisco ESA/SMA/WSA: information disclosure via General Purpose API
An attacker can bypass access restrictions to data via General Purpose API of Cisco ESA/SMA/WSA, in order to obtain sensitive information...
CERTFR-2021-AVI-052, cisco-sa-esa-wsa-sma-info-RHp44vAC, CSCvu89555, CSCvu93199, CSCvu93201, CVE-2021-1129, VIGILANCE-VUL-34391
Cisco Secure Web Appliance: privilege escalation via Log Subscription Subsystem
An attacker can bypass restrictions via Log Subscription Subsystem of Cisco Secure Web Appliance, in order to escalate his privileges...
CERTFR-2020-AVI-758, cisco-sa-wsa-prv-esc-nPzWZrQj, CSCvs65863, CVE-2020-3367, VIGILANCE-VUL-33918
Cisco SMA/WSA: information disclosure via Web-based Management Interface
An attacker can bypass access restrictions to data via Web-based Management Interface of Cisco SMA/WSA, in order to obtain sensitive information...
CERTFR-2020-AVI-545, cisco-sa-sma-wsa-esa-info-dis-vsvPzOHP, CSCvt98774, CSCvu03264, CSCvu08049, CVE-2020-3547, VIGILANCE-VUL-33225
Cisco AsyncOS: overload via HTTP Request Headers
An attacker can trigger an overload via HTTP Request Headers of Cisco AsyncOS, in order to trigger a denial of service...
CERTFR-2020-AVI-128, cisco-sa-cont-sec-gui-dos-nJ625dXb, CSCvq96943, CSCvs33296, CSCvs33306, CVE-2020-3164, VIGILANCE-VUL-31727
Cisco WSA, SMA: read-write access via HTTP Header Injection
An attacker can bypass access restrictions via HTTP Header Injection of Cisco WSA or SMA, in order to read or alter data...
CERTFR-2020-AVI-055, cisco-sa-20200122-wsa-sma-header-inject, CSCvp16724, CSCvq04931, CVE-2020-3117, VIGILANCE-VUL-31408
Cisco Web Security Appliance: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco Web Security Appliance, in order to run JavaScript code in the context of the web site...
CERTFR-2019-AVI-548, cisco-sa-20191106-wsa-xss, CSCvp61143, CVE-2019-15969, VIGILANCE-VUL-30808
Cisco Web Security Appliance: denial of service via Device Reset
An attacker can trigger a fatal error via Device Reset of Cisco Web Security Appliance, in order to trigger a denial of service...
CERTFR-2019-AVI-548, cisco-sa-20191106-wsa-unauth-devreset, CSCvp51493, CVE-2019-15956, VIGILANCE-VUL-30807
Cisco Web Security Appliance: denial of service via HTTPS Certificate
An attacker can trigger a fatal error via HTTPS Certificate of Cisco Web Security Appliance, in order to trigger a denial of service...
CERTFR-2019-AVI-304, cisco-sa-20190703-wsa-dos, CSCvo33747, CVE-2019-1886, VIGILANCE-VUL-29693
Cisco Web Security Appliance: denial of service via HTTP/HTTPS Requests
An attacker can trigger a fatal error via HTTP/HTTPS Requests of Cisco Web Security Appliance, in order to trigger a denial of service...
CERTFR-2019-AVI-304, cisco-sa-20190703-asyncos-wsa, CSCvo29853, CVE-2019-1884, VIGILANCE-VUL-29685
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco Secure Web Appliance: