Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in AsyncOS for the Cisco Web Security Appliance (WSA) could allow an unauthenticated, local attacker to log in to the device with the privileges of a limited user or an unauthenticated, remote attacker to authenticate to certain areas of the web GUI, aka a Static Credentials Vulnerability. Affected Products: virtual and hardware versions of Cisco Web Security Appliance (WSA). More Information: CSCve06124. Known Affected Releases: 10.1.0-204. Known Fixed Releases: 10.5.1-270.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Web Security Appliance AsyncOS 安全漏洞
Vulnerability Description
Cisco Web Security Appliance(WSA)是美国思科(Cisco)公司的一套Web安全设备。该设备提供基于SaaS的访问控制、实时网络报告和追踪、制定安全策略等功能。AsyncOS是运行于其中的一套操作系统。 Cisco WSA中的AsyncOS存在安全漏洞,该漏洞源于用户账户含有默认的静态密码。攻击者可通过使用默认账户连接受影响的系统利用该漏洞查看系统的序号。
CVSS Information
N/A
Vulnerability Type
N/A