Information Disclosure Vulnerability in Multiple Cisco Products (CNVD-2022-55669)

Cisco Email Security Appliance (ESA) and Cisco Secure Email are both products of Cisco (USA). cisco Email Security Appliance is an email security appliance. cisco Secure Email is a Cisco Secure Email (formerly Email Security) provides the best protection for your email from cyber threats.Cisco Email Security Appliance, Secure Email, and Web Manager are vulnerable to an information disclosure vulnerability that stems from a lack of proper input cleanup when querying an external authentication server. An authenticated remote attacker could exploit the vulnerability to retrieve sensitive information from a Lightweight Directory Access Protocol (LDAP) external authentication server connected to the affected appliance.