The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Cisco Web Security Appliance

vulnerability CVE-2019-1816

Cisco Web Security Appliance: code execution via Log Subscription Subsystem

Synthesis of the vulnerability

An attacker can use a vulnerability via Log Subscription Subsystem of Cisco Web Security Appliance, in order to run code.
Impacted products: AsyncOS, Cisco WSA.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user account.
Creation date: 02/05/2019.
Identifiers: CERTFR-2019-AVI-193, cisco-sa-20190501-wsa-privesc, CSCvk68106, CVE-2019-1816, VIGILANCE-VUL-29190.

Description of the vulnerability

An attacker can use a vulnerability via Log Subscription Subsystem of Cisco Web Security Appliance, in order to run code.
Full Vigil@nce bulletin... (Free trial)

vulnerability alert CVE-2019-1672

Cisco Web Security Appliance: privilege escalation via Decryption Policy Bypass

Synthesis of the vulnerability

An attacker can bypass restrictions via Decryption Policy Bypass of Cisco Web Security Appliance, in order to escalate his privileges.
Impacted products: AsyncOS, Cisco WSA.
Severity: 2/4.
Consequences: data reading, data flow.
Provenance: intranet client.
Creation date: 07/02/2019.
Identifiers: cisco-sa-20190206-wsa-bypass, CSCvm91630, CVE-2019-1672, VIGILANCE-VUL-28461.

Description of the vulnerability

An attacker can bypass restrictions via Decryption Policy Bypass of Cisco Web Security Appliance, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability alert CVE-2018-0428

Cisco WSA: privilege escalation

Synthesis of the vulnerability

An attacker can bypass restrictions of Cisco WSA, in order to escalate his privileges.
Impacted products: AsyncOS, Cisco WSA.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: privileged account.
Creation date: 16/08/2018.
Identifiers: CERTFR-2018-AVI-393, cisco-sa-20180815-wsa-escalation, CSCvj93548, CVE-2018-0428, VIGILANCE-VUL-26996.

Description of the vulnerability

An attacker can bypass restrictions of Cisco WSA, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability CVE-2018-0410

Cisco WSA: denial of service via Web Proxy

Synthesis of the vulnerability

An attacker can generate a fatal error via Web Proxy of Cisco WSA, in order to trigger a denial of service.
Impacted products: AsyncOS, Cisco WSA.
Severity: 3/4.
Consequences: denial of service on service, denial of service on client.
Provenance: intranet client.
Creation date: 16/08/2018.
Identifiers: CERTFR-2018-AVI-393, cisco-sa-20180815-wsa-dos, CSCvf36610, CVE-2018-0410, VIGILANCE-VUL-26995.

Description of the vulnerability

An attacker can generate a fatal error via Web Proxy of Cisco WSA, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

vulnerability announce CVE-2018-6922

FreeBSD: denial of service via SegmentSmack

Synthesis of the vulnerability

An attacker can generate a fatal error via TCP Reassembly of FreeBSD, in order to trigger a denial of service.
Impacted products: GAiA, SecurePlatform, CheckPoint Security Gateway, AsyncOS, Cisco Content SMA, Cisco ESA, Cisco WSA, FreeBSD, AIX, Junos OS, SRX-Series, Oracle Communications, pfSense.
Severity: 3/4.
Consequences: denial of service on server, denial of service on service.
Provenance: internet client.
Creation date: 07/08/2018.
Identifiers: 6387, cisco-sa-20180824-linux-tcp, cpujan2019, CVE-2018-6922, FreeBSD-SA-18:08.tcp, ibm10737709, JSA10876, SegmentSmack, sk134253, VIGILANCE-VUL-26922.

Description of the vulnerability

An attacker can generate a fatal error via TCP Reassembly of FreeBSD, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

vulnerability bulletin CVE-2018-5390

Linux kernel: denial of service via SegmentSmack

Synthesis of the vulnerability

An attacker can generate a fatal error via tcp_prune_ofo_queue() of the Linux kernel, in order to trigger a denial of service.
Impacted products: GAiA, SecurePlatform, CheckPoint Security Gateway, AsyncOS, Cisco Content SMA, Cisco ESA, Cisco WSA, Debian, BIG-IP Hardware, TMOS, QRadar SIEM, Junos OS, Junos Space, SRX-Series, Linux, McAfee Email Gateway, McAfee NSM, McAfee NSP, McAfee Web Gateway, openSUSE Leap, Oracle Communications, RHEL, SUSE Linux Enterprise Desktop, SLES, Symantec Content Analysis, ProxySG by Symantec, Ubuntu.
Severity: 3/4.
Consequences: denial of service on server, denial of service on service.
Provenance: internet client.
Creation date: 07/08/2018.
Identifiers: CERTFR-2018-AVI-374, CERTFR-2018-AVI-375, CERTFR-2018-AVI-386, CERTFR-2018-AVI-390, CERTFR-2018-AVI-392, CERTFR-2018-AVI-419, CERTFR-2018-AVI-420, CERTFR-2018-AVI-428, CERTFR-2018-AVI-457, CERTFR-2018-AVI-584, CERTFR-2019-AVI-346, CERTFR-2019-AVI-354, cisco-sa-20180824-linux-tcp, cpujan2019, CVE-2018-5390, DLA-1466-1, DSA-4266-1, ibm10742755, JSA10876, JSA10917, K95343321, openSUSE-SU-2018:2242-1, openSUSE-SU-2018:2404-1, RHSA-2018:2384-01, RHSA-2018:2395-01, RHSA-2018:2645-01, RHSA-2018:2776-01, RHSA-2018:2785-01, RHSA-2018:2789-01, RHSA-2018:2790-01, RHSA-2018:2791-01, RHSA-2018:2924-01, RHSA-2018:2933-01, RHSA-2018:2948-01, SB10249, SegmentSmack, sk134253, SUSE-SU-2018:2223-1, SUSE-SU-2018:2328-1, SUSE-SU-2018:2344-1, SUSE-SU-2018:2374-1, SUSE-SU-2018:2596-1, SUSE-SU-2019:14127-1, SUSE-SU-2019:1870-1, SYMSA1467, USN-3732-1, USN-3732-2, USN-3741-1, USN-3741-2, USN-3741-3, USN-3742-1, USN-3742-2, USN-3742-3, USN-3763-1, VIGILANCE-VUL-26913, VU#962459.

Description of the vulnerability

An attacker can generate a fatal error via tcp_prune_ofo_queue() of the Linux kernel, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability CVE-2018-0406

Cisco Web Security Appliance: Cross Site Scripting via Reflected and Document Object Model-Based

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting via Reflected and Document Object Model-Based of Cisco Web Security Appliance, in order to run JavaScript code in the context of the web site.
Impacted products: AsyncOS, Cisco WSA.
Severity: 2/4.
Consequences: client access/rights.
Provenance: document.
Creation date: 02/08/2018.
Identifiers: cisco-sa-20180801-wsa-xss, CSCve84006, CVE-2018-0406, VIGILANCE-VUL-26895.

Description of the vulnerability

The Cisco Web Security Appliance product offers a web service.

However, it does not filter received data via Reflected and Document Object Model-Based before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting via Reflected and Document Object Model-Based of Cisco Web Security Appliance, in order to run JavaScript code in the context of the web site.
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2018-0366

Cisco WSA: Cross Site Scripting

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting of Cisco WSA, in order to run JavaScript code in the context of the web site.
Impacted products: AsyncOS, Cisco WSA.
Severity: 2/4.
Consequences: client access/rights.
Provenance: document.
Creation date: 12/07/2018.
Identifiers: cisco-sa-20180711-wsa-xss, CSCvf03514, CVE-2018-0366, VIGILANCE-VUL-26700.

Description of the vulnerability

The Cisco WSA product offers a web service.

However, it does not filter received data before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting of Cisco WSA, in order to run JavaScript code in the context of the web site.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability bulletin CVE-2018-0353

Cisco WSA: privilege escalation via Layer 4 Traffic Monitor

Synthesis of the vulnerability

An attacker can bypass restrictions via Layer 4 Traffic Monitor of Cisco WSA, in order to escalate his privileges.
Impacted products: AsyncOS, Cisco WSA.
Severity: 3/4.
Consequences: data flow.
Provenance: intranet client.
Creation date: 07/06/2018.
Identifiers: CERTFR-2018-AVI-270, cisco-sa-20180606-wsa, CSCvg78875, CVE-2018-0353, VIGILANCE-VUL-26348.

Description of the vulnerability

An attacker can bypass restrictions via Layer 4 Traffic Monitor of Cisco WSA, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability bulletin CVE-2018-0087

Cisco Web Security Appliance: privilege escalation via FTP Authentication

Synthesis of the vulnerability

An attacker can bypass restrictions via FTP Authentication of Cisco Web Security Appliance, in order to escalate his privileges.
Impacted products: AsyncOS, Cisco WSA.
Severity: 3/4.
Consequences: privileged access/rights, user access/rights.
Provenance: internet client.
Creation date: 08/03/2018.
Identifiers: CERTFR-2018-AVI-116, cisco-sa-20180307-wsa, CSCvf74281, CVE-2018-0087, VIGILANCE-VUL-25488.

Description of the vulnerability

An attacker can bypass restrictions via FTP Authentication of Cisco Web Security Appliance, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco Web Security Appliance: