medium
5.3
CWE
248
Advisory Published

cisco-sa-ESA-SNMP-JLAJksWK: Multiple Cisco Security Products Simple Network Management Protocol Service Denial of Service Vulnerability

First published: Wed Apr 06 2022(Updated: )

A vulnerability in the TCP/IP stack of Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Secure Email and Web Manager, formerly Security Management Appliance, could allow an unauthenticated, remote attacker to crash the Simple Network Management Protocol (SNMP) service, resulting in a denial of service (DoS) condition. This vulnerability is due to an open port listener on TCP port 199. An attacker could exploit this vulnerability by connecting to TCP port 199. A successful exploit could allow the attacker to crash the SNMP service, resulting in a DoS condition. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ESA-SNMP-JLAJksWK Attention: Simplifying the Cisco portfolio includes the renaming of security products under one brand: Cisco Secure. For more information, see Meet Cisco Secure.

Credit: This vulnerability was found during the resolution a Cisco TAC support case

Affected SoftwareAffected VersionHow to fix
Cisco AsyncOS Software=14.0<14.02.0-020
14.02.0-020
Cisco AsyncOS Software>=12.5 and earlier.=13.8.1=14.0<=14.1<14.1.0-239
14.1.0-239
Cisco AsyncOS Software

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

Frequently Asked Questions

  • What is the severity of cisco-sa-ESA-SNMP-JLAJksWK?

    The severity of cisco-sa-ESA-SNMP-JLAJksWK is categorized as high due to its potential impact on the Cisco Email Security and Web Security Appliances.

  • How do I fix cisco-sa-ESA-SNMP-JLAJksWK?

    To fix cisco-sa-ESA-SNMP-JLAJksWK, upgrade to the recommended versions of Cisco AsyncOS Software listed in the advisory.

  • Who is affected by cisco-sa-ESA-SNMP-JLAJksWK?

    cisco-sa-ESA-SNMP-JLAJksWK affects users of Cisco Email Security Appliance, Cisco Web Security Appliance, and Cisco Secure Email and Web Manager with vulnerable versions of AsyncOS.

  • Can cisco-sa-ESA-SNMP-JLAJksWK be exploited remotely?

    Yes, cisco-sa-ESA-SNMP-JLAJksWK can be exploited remotely by unauthenticated attackers.

  • What type of vulnerability is cisco-sa-ESA-SNMP-JLAJksWK?

    cisco-sa-ESA-SNMP-JLAJksWK is a vulnerability within the TCP/IP stack that can lead to a denial of service.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203