Weakness Name | Source | |
---|---|---|
Improper Control of Generation of Code ('Code Injection') The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment. |
Metrics | Score | Severity | CVSS Vector | Source |
---|---|---|---|---|
V2 | 9 | AV:N/AC:L/Au:S/C:C/I:C/A:C | nvd@nist.gov |
Cisco>>Ironport_asyncos >> Version To (including) 7.1.3
Cisco>>Ironport_asyncos >> Version 7.2
Cisco>>Ironport_asyncos >> Version 7.3
Cisco>>Ironport_asyncos >> Version 7.5
Cisco>>Ironport_asyncos >> Version 7.6
Cisco>>Ironport_asyncos >> Version 7.7
Cisco>>Ironport_asyncos >> Version 7.8
Cisco>>Ironport_asyncos >> Version 7.9
Cisco>>Content_security_management >> Version -
Cisco>>Web_security_appliance >> Version -
Cisco>>Email_security_appliance_firmware >> Version -