Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2016-9202

Опубликовано: 14 дек. 2016
Источник: nvd
CVSS3: 6.1
CVSS2: 4.3
EPSS Низкий

Описание

A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) Switches could allow an unauthenticated, remote attacker to conduct a persistent cross-site scripting (XSS) attack against a user of the affected interface on an affected device. More Information: CSCvb37346. Known Affected Releases: 9.1.1-036 9.7.1-066.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cisco:email_security_appliance:9.1.1-036:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.1.2-023:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.1.2-028:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.1.2-036:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.4.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.4.4-000:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.5.0-000:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.5.0-201:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.6.0-000:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.6.0-042:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.6.0-051:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.7.0-125:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.7.1-066:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.7.2-046:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.7.2-047:*:*:*:*:*:*:*
cpe:2.3:a:cisco:email_security_appliance:9.7.2-054:*:*:*:*:*:*:*

EPSS

Процентиль: 57%
0.00349
Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

github логотип

GHSA-f7hh-fg6m-rg54

CVSS3: 6.1
github
больше 3 лет назад

A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) Switches could allow an unauthenticated, remote attacker to conduct a persistent cross-site scripting (XSS) attack against a user of the affected interface on an affected device. More Information: CSCvb37346. Known Affected Releases: 9.1.1-036 9.7.1-066.

EPSS

Процентиль: 57%
0.00349
Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79