CVE-2015-0624

The web framework in Cisco AsyncOS on Email Security Appliance (ESA), Content Security Management Appliance (SMA), and Web Security Appliance (WSA) devices allows remote attackers to trigger redirects via a crafted HTTP header, aka Bug IDs CSCur44412, CSCur44415, CSCur89630, CSCur89636, CSCur89633, and CSCur89639.

Severity	MEDIUM
CVSS	4.3
CWE	CWE-20
KEV
Published	11 years ago
Modified	1 week ago

Related Products

Product	Advisory
Cisco Web Security Appliance (WSA)	Cisco-SA-20150223-CVE-2015-0624
Cisco Secure Web Appliance	Cisco-SA-20150223-CVE-2015-0624
Cisco Secure Email and Web Manager	Cisco-SA-20150223-CVE-2015-0624
Cisco Secure Email	Cisco-SA-20150223-CVE-2015-0624
Cisco Email Security Appliance (ESA)	Cisco-SA-20150223-CVE-2015-0624
Cisco Content Security Management Appliance (SMA)	Cisco-SA-20150223-CVE-2015-0624