First published: Wed Dec 14 2016(Updated: )
A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) Switches could allow an unauthenticated, remote attacker to conduct a persistent cross-site scripting (XSS) attack against a user of the affected interface on an affected device. More Information: CSCvb37346. Known Affected Releases: 9.1.1-036 9.7.1-066.
Credit: ykramarz@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
Cisco Email Security Appliance | =9.1.1-036 | |
Cisco Email Security Appliance | =9.1.2-023 | |
Cisco Email Security Appliance | =9.1.2-028 | |
Cisco Email Security Appliance | =9.1.2-036 | |
Cisco Email Security Appliance | =9.4.0 | |
Cisco Email Security Appliance | =9.4.4-000 | |
Cisco Email Security Appliance | =9.5.0-000 | |
Cisco Email Security Appliance | =9.5.0-201 | |
Cisco Email Security Appliance | =9.6.0-000 | |
Cisco Email Security Appliance | =9.6.0-042 | |
Cisco Email Security Appliance | =9.6.0-051 | |
Cisco Email Security Appliance | =9.7.0-125 | |
Cisco Email Security Appliance | =9.7.1-066 | |
Cisco Email Security Appliance | =9.7.2-046 | |
Cisco Email Security Appliance | =9.7.2-047 | |
Cisco Email Security Appliance | =9.7.2-054 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.