Cisco Ironport Web Security Appliance — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Ironport Web Security Appliance, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2012-1326 — CVSS 7.4 (high): Cisco IronPort Web Security Appliance up to and including 7.5 does not validate the basic constraints of the certificate authority which…
CVE-2012-0334 — CVSS 6.4 (medium): Cisco IronPort Web Security Appliance AsyncOS software prior to 7.5 has a SSL Certificate Caching vulnerability which could allow…
CVE-2012-1316 — CVSS 5.9 (medium): Cisco IronPort Web Security Appliance does not check for certificate revocation which could lead to MITM attacks
CVE-2021-34749 — CVSS 5.8 (medium): A vulnerability in Server Name Identification (SNI) request filtering of Cisco Web Security Appliance (WSA), Cisco Firepower Threat Defense…
CVE-2021-1516 — CVSS 4.3 (medium): A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance (SMA)…