Vulnerabilities > Cisco > Asyncos > 11.1.3

DATE CVE VULNERABILITY TITLE RISK
2020-09-04 CVE-2020-3546 Improper Input Validation vulnerability in Cisco Asyncos
A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to access sensitive information on an affected device.
network
low complexity
cisco CWE-20
5.3
5.3
2020-06-18 CVE-2020-3368 Improper Input Validation vulnerability in Cisco Asyncos
A vulnerability in the antispam protection mechanisms of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the URL reputation filters on an affected device.
network
low complexity
cisco CWE-20
5.8
5.8
2019-11-26 CVE-2019-15956 Unspecified vulnerability in Cisco Asyncos and web Security Appliance
A vulnerability in the web management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to perform an unauthorized system reset on an affected device.
network
low complexity
cisco
8.8
8.8