CVE-2018-0419: Input Validation
First published: Wed Aug 15 2018(Updated: )
A vulnerability in certain attachment detection mechanisms of Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to bypass the filtering functionality of an affected system. The vulnerability is due to the improper detection of content within executable (EXE) files. An attacker could exploit this vulnerability by sending a customized EXE file that is not recognized and blocked by the ESA. A successful exploit could allow an attacker to send email messages that contain malicious executable files to unsuspecting users. Cisco Bug IDs: CSCvh03786.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Email Security Appliance |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the CVE ID of this vulnerability?
CVE-2018-0419
What is the severity level of CVE-2018-0419?
The severity level of CVE-2018-0419 is high with a severity value of 7.5.
How does the vulnerability in Cisco Email Security Appliances (ESA) occur?
The vulnerability in Cisco Email Security Appliances (ESA) occurs due to the improper detection of content within executable (EXE) files.
What are the affected systems by this vulnerability?
The Cisco Email Security Appliance is affected by this vulnerability.
Is authentication required to exploit this vulnerability?
No, an unauthenticated, remote attacker can exploit this vulnerability.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/cisco
- canonical/cisco email security appliance