Cisco Web Security Virtual Appliance 9.0.0

CPE Details

Cisco Web Security Virtual Appliance 9.0.0
cisco
web_security_virtual_appliance
9.0.0
2017-07-28
17h00 +00:00
2021-04-01
15h46 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:cisco:web_security_virtual_appliance:9.0.0:*:*:*:*:*:*:*

Informations

Vendor

cisco

Product

web_security_virtual_appliance

Version

9.0.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-1271 2021-01-20 19h57 +00:00 A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. The vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by inserting malicious data into a specific data field in an affected interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface.
4.8
Medium
CVE-2017-6751 2017-07-25 17h00 +00:00 A vulnerability in the web proxy functionality of the Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to forward traffic from the web proxy interface of an affected device to the administrative management interface of an affected device, aka an Access Control Bypass Vulnerability. Affected Products: virtual and hardware versions of Cisco Web Security Appliance (WSA). More Information: CSCvd88863. Known Affected Releases: 10.1.0-204 9.0.0-485.
7.5
High