Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the web management interface in Cisco AsyncOS on the Email Security Appliance (ESA) 8.0, Web Security Appliance (WSA) 8.0 (.5 Hot Patch 1) and earlier, and Content Security Management Appliance (SMA) 8.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted parameter, as demonstrated by the date_range parameter to monitor/reports/overview on the IronPort ESA, aka Bug IDs CSCun07998, CSCun07844, and CSCun07888.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco AsyncOS 跨站脚本漏洞
Vulnerability Description
Cisco AsyncOS on Email Security Appliance(ESA)等都是美国思科(Cisco)公司的产品。Cisco ESA是一套电子邮件安全设备。Cisco Content Security Management Appliance(SMA)是一套内容安全管理设备。Cisco Web Security Appliance(WSA)是一套网络安全设备。Cisco AsyncOS是一套使用在这些产品中的操作系统。 Cisco AsyncOS的Web管理界面中存在跨站脚本漏洞。远程攻
CVSS Information
N/A
Vulnerability Type
N/A