Vulnerabilities > Cisco > WEB Security Appliance WSA

DATE CVE VULNERABILITY TITLE RISK
2016-05-25 CVE-2016-1383 Resource Management Errors vulnerability in Cisco web Security Appliance (Wsa)
Memory leak in Cisco AsyncOS through 8.8 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (memory consumption) via an unspecified HTTP status code, aka Bug ID CSCur28305.
network
low complexity
cisco CWE-399
7.5
7.5
2016-05-25 CVE-2016-1382 Improper Input Validation vulnerability in Cisco web Security Appliance (Wsa)
Cisco AsyncOS before 8.5.3-069 and 8.6 through 8.8 on Web Security Appliance (WSA) devices mishandles memory allocation for HTTP requests, which allows remote attackers to cause a denial of service (proxy-process reload) via a crafted request, aka Bug ID CSCuu02529.
network
low complexity
cisco CWE-20
7.5
7.5