Vulnerabilities > Cisco > Email Security Appliance > 12.0.0.208

DATE CVE VULNERABILITY TITLE RISK
2020-01-26 CVE-2020-3134 Improper Input Validation vulnerability in Cisco Email Security Appliance
A vulnerability in the zip decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-20
6.5
6.5
2019-04-18 CVE-2019-1831 Improper Input Validation vulnerability in Cisco Email Security Appliance 11.1.2023/12.0.0208
A vulnerability in the email message scanning of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured content filters on the device.
network
low complexity
cisco CWE-20
5.3
5.3