The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Cisco Web Security Appliance

Cisco AsyncOS: overload via HTTP Request Headers
An attacker can trigger an overload via HTTP Request Headers of Cisco AsyncOS, in order to trigger a denial of service...
CERTFR-2020-AVI-128, cisco-sa-cont-sec-gui-dos-nJ625dXb, CSCvq96943, CSCvs33296, CSCvs33306, CVE-2020-3164, VIGILANCE-VUL-31727
Cisco WSA, SMA: read-write access via HTTP Header Injection
An attacker can bypass access restrictions via HTTP Header Injection of Cisco WSA or SMA, in order to read or alter data...
CERTFR-2020-AVI-055, cisco-sa-20200122-wsa-sma-header-inject, CSCvp16724, CSCvq04931, CVE-2020-3117, VIGILANCE-VUL-31408
Cisco Web Security Appliance: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco Web Security Appliance, in order to run JavaScript code in the context of the web site...
CERTFR-2019-AVI-548, cisco-sa-20191106-wsa-xss, CSCvp61143, CVE-2019-15969, VIGILANCE-VUL-30808
Cisco Web Security Appliance: denial of service via Device Reset
An attacker can trigger a fatal error via Device Reset of Cisco Web Security Appliance, in order to trigger a denial of service...
CERTFR-2019-AVI-548, cisco-sa-20191106-wsa-unauth-devreset, CSCvp51493, CVE-2019-15956, VIGILANCE-VUL-30807
Cisco Web Security Appliance: denial of service via HTTPS Certificate
An attacker can trigger a fatal error via HTTPS Certificate of Cisco Web Security Appliance, in order to trigger a denial of service...
CERTFR-2019-AVI-304, cisco-sa-20190703-wsa-dos, CSCvo33747, CVE-2019-1886, VIGILANCE-VUL-29693
Cisco Web Security Appliance: denial of service via HTTP/HTTPS Requests
An attacker can trigger a fatal error via HTTP/HTTPS Requests of Cisco Web Security Appliance, in order to trigger a denial of service...
CERTFR-2019-AVI-304, cisco-sa-20190703-asyncos-wsa, CSCvo29853, CVE-2019-1884, VIGILANCE-VUL-29685
Cisco Web Security Appliance: code execution via Log Subscription Subsystem
An attacker can use a vulnerability via Log Subscription Subsystem of Cisco Web Security Appliance, in order to run code...
CERTFR-2019-AVI-193, cisco-sa-20190501-wsa-privesc, CSCvk68106, CVE-2019-1816, VIGILANCE-VUL-29190
Cisco Web Security Appliance: denial of service via Malformed HTTP/S Request
An attacker can trigger a fatal error via Malformed HTTP/S Request of Cisco Web Security Appliance, in order to trigger a denial of service...
CERTFR-2019-AVI-193, cisco-sa-20190501-wsa-dos, CSCvn31450, CVE-2019-1817, VIGILANCE-VUL-29189
Cisco Web Security Appliance: privilege escalation via Decryption Policy Bypass
An attacker can bypass restrictions via Decryption Policy Bypass of Cisco Web Security Appliance, in order to escalate his privileges...
cisco-sa-20190206-wsa-bypass, CSCvm91630, CVE-2019-1672, VIGILANCE-VUL-28461
Cisco WSA: privilege escalation
An attacker can bypass restrictions of Cisco WSA, in order to escalate his privileges...
CERTFR-2018-AVI-393, cisco-sa-20180815-wsa-escalation, CSCvj93548, CVE-2018-0428, VIGILANCE-VUL-26996
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco Web Security Appliance: