VYPR
Medium severity6.1NVD Advisory· Published Dec 14, 2016· Updated Jun 17, 2026

CVE-2016-9202

CVE-2016-9202

Description

A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) Switches could allow an unauthenticated, remote attacker to conduct a persistent cross-site scripting (XSS) attack against a user of the affected interface on an affected device. More Information: CSCvb37346. Known Affected Releases: 9.1.1-036 9.7.1-066.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

17
  • cpe:2.3:a:cisco:email_security_appliance:9.1.1-036:*:*:*:*:*:*:*+ 16 more
    • cpe:2.3:a:cisco:email_security_appliance:9.1.1-036:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.1.2-023:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.1.2-028:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.1.2-036:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.4.4-000:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.5.0-000:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.5.0-201:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.6.0-000:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.6.0-042:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.6.0-051:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.7.0-125:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.7.1-066:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.7.2-046:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.7.2-047:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:9.7.2-054:*:*:*:*:*:*:*
    • (no CPE)range: 9.1.1-036, 9.7.1-066

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.