Lucene search
CiscoCVE-2015-6293HistoryNov 06, 2015 - 3:59 a.m.
CVE-2015-6293
2015-11-0603:59:02
CWE-399
cisco
web.nvd.nist.gov
34
cve-2015-6293
cisco asyncos
denial of service
memory consumption
nvd
bug id cscur39155
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.9
Confidence
Low
EPSS
0.002
Percentile
56.0%
Cisco AsyncOS 8.x before 8.0.8-113, 8.1.x and 8.5.x before 8.5.3-051, 8.6.x and 8.7.x before 8.7.0-171-LD, and 8.8.x before 8.8.0-085 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (memory consumption) via multiple file-range requests, aka Bug ID CSCur39155.
Affected configurations
Node
ciscoweb_security_applianceMatch8.0.0-000
ORciscoweb_security_applianceMatch8.0.5
ORciscoweb_security_applianceMatch8.0.5hp1
ORciscoweb_security_applianceMatch8.0.6
ORciscoweb_security_applianceMatch8.0.6-078
ORciscoweb_security_applianceMatch8.0.7-142
ORciscoweb_security_applianceMatch8.0.8-mr-113
ORciscoweb_security_applianceMatch8.5.0-497
ORciscoweb_security_applianceMatch8.5.0.000
ORciscoweb_security_applianceMatch8.5.2-024
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | web_security_appliance | 8.0.0-000 | cpe:2.3:a:cisco:web_security_appliance:8.0.0-000:*:*:*:*:*:*:* |
| cisco | web_security_appliance | 8.0.5 | cpe:2.3:a:cisco:web_security_appliance:8.0.5:*:*:*:*:*:*:* |
| cisco | web_security_appliance | 8.0.5 | cpe:2.3:a:cisco:web_security_appliance:8.0.5:hp1:*:*:*:*:*:* |
| cisco | web_security_appliance | 8.0.6 | cpe:2.3:a:cisco:web_security_appliance:8.0.6:*:*:*:*:*:*:* |
| cisco | web_security_appliance | 8.0.6-078 | cpe:2.3:a:cisco:web_security_appliance:8.0.6-078:*:*:*:*:*:*:* |
| cisco | web_security_appliance | 8.0.7-142 | cpe:2.3:a:cisco:web_security_appliance:8.0.7-142:*:*:*:*:*:*:* |
| cisco | web_security_appliance | 8.0.8-mr-113 | cpe:2.3:a:cisco:web_security_appliance:8.0.8-mr-113:*:*:*:*:*:*:* |
| cisco | web_security_appliance | 8.5.0-497 | cpe:2.3:a:cisco:web_security_appliance:8.5.0-497:*:*:*:*:*:*:* |
| cisco | web_security_appliance | 8.5.0.000 | cpe:2.3:a:cisco:web_security_appliance:8.5.0.000:*:*:*:*:*:*:* |
| cisco | web_security_appliance | 8.5.2-024 | cpe:2.3:a:cisco:web_security_appliance:8.5.2-024:*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2015-11-06 03:59:00
cvelist
cvelist
CVE-2015-6293
2015-11-06 02:00:00
nvd
nvd
CVE-2015-6293
2015-11-06 03:59:02
cisco
cisco
Cisco Web Security Appliance Range Request Denial of Service Vulnerability
2015-11-04 16:00:00
openvas
openvas
nessus
nessus
Cisco Web Security Appliance Multiple Vulnerabilities
2015-11-18 00:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.9
Confidence
Low
EPSS
0.002
Percentile
56.0%
Related for CVE-2015-6293