VYPR

AsyncOS Software

by Cisco Systems, Inc.

CVEs (32)

  • CVE-2019-1983MedSep 23, 2020
    risk 0.35cvss 5.3epss 0.02

    A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to cause repeated crashes in some internal processes…

  • CVE-2019-15988MedNov 26, 2019
    risk 0.35cvss 5.3epss 0.01

    A vulnerability in the antispam protection mechanisms of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the URL reputation filters on an affected device. The vulnerability is due to insufficient input…

  • CVE-2016-6463MedNov 19, 2016
    risk 0.35cvss 5.3epss 0.01

    A vulnerability in the email filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to bypass Advanced Malware Protection (AMP) filters that are configured for an affected device. This vulnerability…

  • CVE-2016-6462MedNov 19, 2016
    risk 0.35cvss 5.3epss 0.02

    A vulnerability in the email filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to bypass Advanced Malware Protection (AMP) filters that are configured for an affected device. This vulnerability…

  • CVE-2025-20180MedFeb 5, 2025
    risk 0.31cvss 4.8epss 0.00

    A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Email Gateway could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. …

  • CVE-2024-20257MedMay 15, 2024
    risk 0.31cvss 4.8epss 0.00

    A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email Gateway could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface.r This vulnerability is due to insufficient validation of user…

  • CVE-2024-20256MedMay 15, 2024
    risk 0.31cvss 4.8epss 0.00

    A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Web Appliance could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface. This vulnerability is due to…

  • CVE-2021-1425MedNov 18, 2024
    risk 0.28cvss 4.3epss 0.01

    A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability exists because…

  • CVE-2021-1516MedMay 6, 2021
    risk 0.28cvss 4.3epss 0.01

    A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance (SMA), Cisco Email Security Appliance (ESA), and Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to access sensitive…

  • CVE-2019-15971MedNov 26, 2019
    risk 0.28cvss 4.3epss 0.00

    A vulnerability in the MP3 detection engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured content filters on the device. The vulnerability is due to improper validation of certain MP3 file…

  • CVE-2016-6465MedDec 14, 2016
    risk 0.28cvss 4.3epss 0.02

    A vulnerability in the content filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances and Cisco Web Security Appliances could allow an unauthenticated, remote attacker to bypass user filters that are configured for an affected device. Affected…

  • CVE-2025-20185LowFeb 5, 2025
    risk 0.22cvss 3.4epss 0.00

    A vulnerability in the implementation of the remote access functionality of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an authenticated, local attacker to elevate privileges to root. The…

Page 2 of 2