Описание
The HTTPS Proxy feature in Cisco AsyncOS before 8.5.3-051 and 9.x before 9.0.0-485 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (service outage) by leveraging certain intranet connectivity and sending a malformed HTTPS request, aka Bug ID CSCuu24840.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:cisco:web_security_appliance:9.0.0-193:*:*:*:*:*:*:*
cpe:2.3:o:cisco:web_security_appliance:8.5.0-497:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00445
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 5.3
github
больше 3 лет назад
The HTTPS Proxy feature in Cisco AsyncOS before 8.5.3-051 and 9.x before 9.0.0-485 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (service outage) by leveraging certain intranet connectivity and sending a malformed HTTPS request, aka Bug ID CSCuu24840.
EPSS
Процентиль: 63%
0.00445
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-20