A vulnerability in the URL filtering mechanism of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the URL reputation filters on an affected device. This vulnerability is due to improper processing of URLs. An attacker could exploit this vulnerability by crafting a URL in a particular way. A successful exploit could allow the attacker to bypass the URL reputation filters that are configured for an affected device, which could allow malicious URLs to pass through the device.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:NCisco Asyncos
OSCiscowszystkie wersjeCisco Email Security Appliance C160
HWCiscowszystkie wersjeCisco Email Security Appliance C170
HWCiscowszystkie wersjeCisco Email Security Appliance C190
HWCiscowszystkie wersjeCisco Email Security Appliance C370
HWCiscowszystkie wersjeCisco Email Security Appliance C370d
HWCiscowszystkie wersjeCisco Email Security Appliance C380
HWCiscowszystkie wersjeCisco Email Security Appliance C390
HWCiscowszystkie wersjeCisco Email Security Appliance C670
HWCiscowszystkie wersjeCisco Email Security Appliance C680
HWCiscowszystkie wersjeCisco Email Security Appliance C690
HWCiscowszystkie wersjeCisco Email Security Appliance C690x
HWCiscowszystkie wersjeCisco Email Security Appliance X1070
HWCiscowszystkie wersje
Powiązane podatności
RCE z uprawnieniami root w Cisco Secure Email Gateway i Secure Email and Web Manager
A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated, local attac...
A vulnerability in the DNS-based Authentication of Named Entities (DANE) email verification component of Cisco...
A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (...
A vulnerability in the proxy service of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an un...