Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Web Security Appliance Proxy Service Denial of Service Vulnerability
Vulnerability Description
A vulnerability in the proxy service of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to exhaust system memory and cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper memory management in the proxy service of an affected device. An attacker could exploit this vulnerability by establishing a large number of HTTPS connections to the affected device. A successful exploit could allow the attacker to cause the system to stop processing new connections, which could result in a DoS condition. Note: Manual intervention may be required to recover from this situation.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Vulnerability Type
在移除最后引用时对内存的释放不恰当(内存泄露)
Vulnerability Title
Cisco AsyncOS 安全漏洞
Vulnerability Description
Cisco AsyncOS是美国思科(Cisco)公司的一款应用于思科设备的操作系统。 Cisco AsyncOS for Cisco Web Security Appliance存在安全漏洞,该漏洞源于受影响设备的代理服务的内存管理不当造成的。攻击者可以通过与受影响的设备建立大量HTTPS连接来利用该漏洞。如果攻击成功,攻击者可利用该漏洞可能会导致系统停止处理新连接,从而导致拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A