Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cisco IronPort Web Security Appliance AsyncOS software prior to 7.5 has a SSL Certificate Caching vulnerability which could allow man-in-the-middle attacks
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco IronPort Web Security Appliance AsyncOS 输入验证错误漏洞
Vulnerability Description
Cisco IronPort Web Security Appliance是美国思科(Cisco)公司的一套企业网络安全和网络威胁防护解决方案。该方案提供Web名誉过滤器(WBRS)和反恶意软件扫描引擎等功能。AsyncOS是运行在其中的一套操作系统。 Cisco IronPort Web Security Appliance AsyncOS 7.5之前版本中存在输入验证错误漏洞,该漏洞源于程序没有正确处理缓存的SSL和TLS证书。远程攻击者可通过向服务器端会话注入新创建的证书利用该漏洞实施中间人攻击。
CVSS Information
N/A
Vulnerability Type
N/A