Vulnerabilities > Cisco > WEB Security Appliance > wsa10.5.0.fcs.000

DATE CVE VULNERABILITY TITLE RISK
2019-05-03 CVE-2019-1816 Improper Input Validation vulnerability in Cisco web Security Appliance
A vulnerability in the log subscription subsystem of the Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to perform command injection and elevate privileges to root.
local
low complexity
cisco CWE-20
7.8
7.8
2018-08-15 CVE-2018-0428 Improper Privilege Management vulnerability in Cisco web Security Appliance
A vulnerability in the account management subsystem of Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to elevate privileges to root.
local
low complexity
cisco CWE-269
6.7
6.7