Unrated severityNVD Advisory· Published Jul 29, 2015· Updated May 6, 2026
CVE-2015-4288
CVE-2015-4288
Description
The LDAP implementation on the Cisco Web Security Appliance (WSA) 8.5.0-000, Email Security Appliance (ESA) 8.5.7-042, and Content Security Management Appliance (SMA) 8.3.6-048 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate, aka Bug IDs CSCuo29561, CSCuv40466, and CSCuv40470.
Affected products
3- cpe:2.3:h:cisco:content_security_management_appliance:8.3.6-048:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:email_security_appliance:8.5.7-042:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:web_security_appliance:8.5.0-000:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- tools.cisco.com/security/center/viewAlert.xnvdVendor Advisory
News mentions
0No linked articles in our index yet.