Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Web Security Appliance Web Proxy Denial of Service Vulnerability
Vulnerability Description
A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient input validation mechanisms for certain fields in HTTP/HTTPS requests sent through an affected device. A successful attacker could exploit this vulnerability by sending a malicious HTTP/HTTPS request through an affected device. An exploit could allow the attacker to force the device to stop processing traffic, resulting in a DoS condition.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco Web Security Appliance AsyncOS Software 输入验证错误漏洞
Vulnerability Description
Cisco Web Security Appliance(WSA)是美国思科(Cisco)公司的一款Web安全设备。该设备提供基于SaaS的访问控制、实时网络报告和追踪、制定安全策略等功能。AsyncOS Software是使用在其中的一套操作系统。 Cisco WSA中的AsyncOS Software的Web代理功能存在输入验证错误漏洞,该漏洞源于程序没有对通过受影响设备所发送的HTTP/HTTPS请求中的字段进行充分地输入验证。远程攻击者可通过发送恶意的HTTP/HTTPS请求利用该漏洞造成流量处理
CVSS Information
N/A
Vulnerability Type
N/A