The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Cisco Web Security Appliance

computer weakness announce CVE-2019-1816

Cisco Web Security Appliance: code execution via Log Subscription Subsystem

Synthesis of the vulnerability

An attacker can use a vulnerability via Log Subscription Subsystem of Cisco Web Security Appliance, in order to run code.
Severity: 2/4.
Creation date: 02/05/2019.
Identifiers: CERTFR-2019-AVI-193, cisco-sa-20190501-wsa-privesc, CSCvk68106, CVE-2019-1816, VIGILANCE-VUL-29190.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can use a vulnerability via Log Subscription Subsystem of Cisco Web Security Appliance, in order to run code.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2019-1672

Cisco Web Security Appliance: privilege escalation via Decryption Policy Bypass

Synthesis of the vulnerability

An attacker can bypass restrictions via Decryption Policy Bypass of Cisco Web Security Appliance, in order to escalate his privileges.
Severity: 2/4.
Creation date: 07/02/2019.
Identifiers: cisco-sa-20190206-wsa-bypass, CSCvm91630, CVE-2019-1672, VIGILANCE-VUL-28461.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can bypass restrictions via Decryption Policy Bypass of Cisco Web Security Appliance, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

security weakness CVE-2018-0428

Cisco WSA: privilege escalation

Synthesis of the vulnerability

An attacker can bypass restrictions of Cisco WSA, in order to escalate his privileges.
Severity: 2/4.
Creation date: 16/08/2018.
Identifiers: CERTFR-2018-AVI-393, cisco-sa-20180815-wsa-escalation, CSCvj93548, CVE-2018-0428, VIGILANCE-VUL-26996.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can bypass restrictions of Cisco WSA, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

cybersecurity vulnerability CVE-2018-0410

Cisco WSA: denial of service via Web Proxy

Synthesis of the vulnerability

An attacker can generate a fatal error via Web Proxy of Cisco WSA, in order to trigger a denial of service.
Severity: 3/4.
Creation date: 16/08/2018.
Identifiers: CERTFR-2018-AVI-393, cisco-sa-20180815-wsa-dos, CSCvf36610, CVE-2018-0410, VIGILANCE-VUL-26995.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can generate a fatal error via Web Proxy of Cisco WSA, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability alert CVE-2018-6922

FreeBSD: denial of service via SegmentSmack

Synthesis of the vulnerability

An attacker can generate a fatal error via TCP Reassembly of FreeBSD, in order to trigger a denial of service.
Severity: 3/4.
Creation date: 07/08/2018.
Identifiers: 6387, cisco-sa-20180824-linux-tcp, cpujan2019, CVE-2018-6922, FreeBSD-SA-18:08.tcp, ibm10737709, JSA10876, SegmentSmack, sk134253, VIGILANCE-VUL-26922.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can generate a fatal error via TCP Reassembly of FreeBSD, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

security announce CVE-2018-5390

Linux kernel: denial of service via SegmentSmack

Synthesis of the vulnerability

An attacker can generate a fatal error via tcp_prune_ofo_queue() of the Linux kernel, in order to trigger a denial of service.
Severity: 3/4.
Creation date: 07/08/2018.
Identifiers: CERTFR-2018-AVI-374, CERTFR-2018-AVI-375, CERTFR-2018-AVI-386, CERTFR-2018-AVI-390, CERTFR-2018-AVI-392, CERTFR-2018-AVI-419, CERTFR-2018-AVI-420, CERTFR-2018-AVI-428, CERTFR-2018-AVI-457, CERTFR-2018-AVI-584, CERTFR-2019-AVI-346, CERTFR-2019-AVI-354, cisco-sa-20180824-linux-tcp, cpujan2019, CVE-2018-5390, DLA-1466-1, DSA-4266-1, ibm10742755, JSA10876, JSA10917, K95343321, openSUSE-SU-2018:2242-1, openSUSE-SU-2018:2404-1, RHSA-2018:2384-01, RHSA-2018:2395-01, RHSA-2018:2645-01, RHSA-2018:2776-01, RHSA-2018:2785-01, RHSA-2018:2789-01, RHSA-2018:2790-01, RHSA-2018:2791-01, RHSA-2018:2924-01, RHSA-2018:2933-01, RHSA-2018:2948-01, SB10249, SegmentSmack, sk134253, SUSE-SU-2018:2223-1, SUSE-SU-2018:2328-1, SUSE-SU-2018:2344-1, SUSE-SU-2018:2374-1, SUSE-SU-2018:2596-1, SUSE-SU-2019:14127-1, SUSE-SU-2019:1870-1, SYMSA1467, USN-3732-1, USN-3732-2, USN-3741-1, USN-3741-2, USN-3741-3, USN-3742-1, USN-3742-2, USN-3742-3, USN-3763-1, VIGILANCE-VUL-26913, VU#962459.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can generate a fatal error via tcp_prune_ofo_queue() of the Linux kernel, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability CVE-2018-0406

Cisco Web Security Appliance: Cross Site Scripting via Reflected and Document Object Model-Based

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting via Reflected and Document Object Model-Based of Cisco Web Security Appliance, in order to run JavaScript code in the context of the web site.
Severity: 2/4.
Creation date: 02/08/2018.
Identifiers: cisco-sa-20180801-wsa-xss, CSCve84006, CVE-2018-0406, VIGILANCE-VUL-26895.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

The Cisco Web Security Appliance product offers a web service.

However, it does not filter received data via Reflected and Document Object Model-Based before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting via Reflected and Document Object Model-Based of Cisco Web Security Appliance, in order to run JavaScript code in the context of the web site.
Full Vigil@nce bulletin... (Free trial)

computer weakness note CVE-2018-0366

Cisco WSA: Cross Site Scripting

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting of Cisco WSA, in order to run JavaScript code in the context of the web site.
Severity: 2/4.
Creation date: 12/07/2018.
Identifiers: cisco-sa-20180711-wsa-xss, CSCvf03514, CVE-2018-0366, VIGILANCE-VUL-26700.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

The Cisco WSA product offers a web service.

However, it does not filter received data before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting of Cisco WSA, in order to run JavaScript code in the context of the web site.
Full Vigil@nce bulletin... (Free trial)

computer weakness note CVE-2018-0353

Cisco WSA: privilege escalation via Layer 4 Traffic Monitor

Synthesis of the vulnerability

An attacker can bypass restrictions via Layer 4 Traffic Monitor of Cisco WSA, in order to escalate his privileges.
Severity: 3/4.
Creation date: 07/06/2018.
Identifiers: CERTFR-2018-AVI-270, cisco-sa-20180606-wsa, CSCvg78875, CVE-2018-0353, VIGILANCE-VUL-26348.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can bypass restrictions via Layer 4 Traffic Monitor of Cisco WSA, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

threat note CVE-2018-0087

Cisco Web Security Appliance: privilege escalation via FTP Authentication

Synthesis of the vulnerability

An attacker can bypass restrictions via FTP Authentication of Cisco Web Security Appliance, in order to escalate his privileges.
Severity: 3/4.
Creation date: 08/03/2018.
Identifiers: CERTFR-2018-AVI-116, cisco-sa-20180307-wsa, CSCvf74281, CVE-2018-0087, VIGILANCE-VUL-25488.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can bypass restrictions via FTP Authentication of Cisco Web Security Appliance, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco Web Security Appliance: