The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Cisco Security Management Appliance

Cisco Email Security Appliance, Content Security Management Appliance: mail disclosure
An attacker can tamper with the spam manager of Cisco Email Security Appliance and Content Security Management Appliance, in order to get any any mail...
cisco-sa-20180207-esacsm, CVE-2018-0140, VIGILANCE-VUL-25252
Cisco ESA/SMA: privilege escalation via CLI
An attacker can bypass restrictions via CLI of Cisco ESA/SMA, in order to escalate his privileges...
CERTFR-2018-AVI-042, cisco-sa-20180117-esasma, CSCvb34303, CSCvb35726, CVE-2018-0095, VIGILANCE-VUL-25102
Cisco ESA/SMA: read-write access via HTTP Response Splitting
An attacker can bypass access restrictions via HTTP Response Splitting of Cisco ESA/SMA, in order to read or alter data...
cisco-sa-20171115-esa, CSCvf16705, CSCvj76180, CVE-2017-12309, VIGILANCE-VUL-24477
Cisco WSA/ESA/SMA: information disclosure via SNMP Polling
An attacker can bypass access restrictions to data via SNMP Polling of Cisco WSA/ESA/SMA, in order to obtain sensitive information...
CERTFR-2017-AVI-269, cisco-sa-20170816-csa, CSCve26106, CSCve26202, CSCve26224, CVE-2017-6783, VIGILANCE-VUL-23555
Cisco Email Security and Content Security Management Appliance: Cross Site Scripting
An attacker can trigger a Cross Site Scripting in Cisco Email Security Appliance and Content Security Management Appliance, in order to run JavaScript code in the context of the web site...
cisco-sa-20170607-esa, CVE-2017-6661, VIGILANCE-VUL-22926
OpenSSL: denial of service via the "Encrypt-Then-Mac" option
An attacker can change the state of the "Encrypt-Then-Mac" TLS option in a renegotiation with a server or client based on OpenSSL, in order to trigger a denial of service...
2003480, 2003620, 2003673, 2004940, CERTFR-2017-AVI-035, cisco-sa-20170130-openssl, cpuapr2019, cpujan2018, cpuoct2017, CVE-2017-3733, HPESBGN03728, VIGILANCE-VUL-21871
OpenSSL: multiple vulnerabilities
An attacker can use several vulnerabilities of OpenSSL...
1117414, 2000544, 2000988, 2000990, 2002331, 2004036, 2004940, 2009389, 2010154, 2011567, 2012827, 2014202, 2014651, 2014669, 2015080, BSA-2016-204, BSA-2016-207, BSA-2016-211, BSA-2016-212, BSA-2016-213, BSA-2016-216, BSA-2016-234, bulletinapr2017, bulletinjan2018, bulletinoct2017, CERTFR-2017-AVI-035, CERTFR-2018-AVI-343, cisco-sa-20170130-openssl, cpuapr2017, cpuapr2019, cpujan2018, cpujul2017, cpujul2018, cpuoct2017, CVE-2016-7055, CVE-2017-3730, CVE-2017-3731, CVE-2017-3732, DLA-814-1, DSA-2020-062, DSA-3773-1, FEDORA-2017-3451dbec48, FEDORA-2017-e853b4144f, FG-IR-17-019, FreeBSD-SA-17:02.openssl, ibm10732391, ibm10733905, ibm10738249, ibm10738401, JSA10775, JSA10990, K37526132, K43570545, K44512851, K-510805, NTAP-20170127-0001, NTAP-20170310-0002, NTAP-20180201-0001, openSUSE-SU-2017:0481-1, openSUSE-SU-2017:0487-1, openSUSE-SU-2017:0527-1, openSUSE-SU-2017:0941-1, openSUSE-SU-2017:2011-1, openSUSE-SU-2017:2868-1, openSUSE-SU-2018:0458-1, PAN-70674, PAN-73914, PAN-SA-2017-0012, PAN-SA-2017-0014, PAN-SA-2017-0016, RHSA-2017:0286-01, RHSA-2018:2568-01, RHSA-2018:2575-01, SA141, SA40423, SB10188, SSA:2017-041-02, SUSE-SU-2018:0112-1, SUSE-SU-2018:2839-1, SUSE-SU-2018:3082-1, TNS-2017-03, USN-3181-1, VIGILANCE-VUL-21692
Cisco ESA, SMA: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco ESA/SMA, in order to run JavaScript code in the context of the web site...
cisco-sa-20161207-esa1, CSCvb37346, CVE-2016-9202, VIGILANCE-VUL-21313
Cisco AsyncOS: Man-in-the-Middle
An attacker can act as a Man-in-the-Middle on Cisco AsyncOS, in order to read or write data in the session...
cisco-sa-20161207-asyncos, CSCul88715, CSCul94617, CSCul94627, CVE-2016-1411, VIGILANCE-VUL-21309
Cisco AsyncOS: denial of service via FTP
An attacker can send malicious FTP packets to Cisco AsyncOS, in order to trigger a denial of service...
cisco-sa-20160928-aos, CSCuz82907, CSCuz84330, CSCuz86065, CVE-2016-6416, VIGILANCE-VUL-20718
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco Security Management Appliance: