Lucene search

CiscoCVE-2017-3827

HistoryFeb 22, 2017 - 2:59 a.m.

CVE-2017-3827

2017-02-2202:59:00

CWE-20

cisco

web.nvd.nist.gov

vulnerability

mime scanner

cisco

asyncos software

email security appliances

web security appliances

remote attacker

user filters

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

5.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

68.4%

JSON

A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauthenticated, remote attacker to bypass configured user filters on the device. Affected Products: This vulnerability affects all releases prior to the first fixed release of Cisco AsyncOS Software for Cisco ESA and Cisco WSA, both virtual and hardware appliances, that are configured with message or content filters to scan incoming email attachments on the ESA or services scanning content of web access on the WSA. More Information: SCvb91473, CSCvc76500. Known Affected Releases: 10.0.0-203 9.9.9-894 WSA10.0.0-233.

Affected configurations

Nvd

Node

ciscoweb_security_applianceMatch10.0.0-082

ciscoweb_security_applianceMatch10.0.0-124

ciscoweb_security_applianceMatch10.0.0-125

ciscoweb_security_applianceMatch10.0.0-203

ciscoweb_security_applianceMatch10.0.0-232

ciscoemail_security_appliance_firmwareMatch9.9.6-026

ciscoemail_security_appliance_firmwareMatch9.9.9-894

ciscoemail_security_appliance_firmwareMatch10.0.0-082

ciscoemail_security_appliance_firmwareMatch10.0.0-124

ciscoemail_security_appliance_firmwareMatch10.0.0-125

ciscoemail_security_appliance_firmwareMatch10.0.0-203

ciscoemail_security_appliance_firmwareMatch10.0.0-232

VendorProductVersionCPE
ciscoweb_security_appliance10.0.0-082cpe:2.3:a:cisco:web_security_appliance:10.0.0-082:*:*:*:*:*:*:*
ciscoweb_security_appliance10.0.0-124cpe:2.3:a:cisco:web_security_appliance:10.0.0-124:*:*:*:*:*:*:*
ciscoweb_security_appliance10.0.0-125cpe:2.3:a:cisco:web_security_appliance:10.0.0-125:*:*:*:*:*:*:*
ciscoweb_security_appliance10.0.0-203cpe:2.3:a:cisco:web_security_appliance:10.0.0-203:*:*:*:*:*:*:*
ciscoweb_security_appliance10.0.0-232cpe:2.3:a:cisco:web_security_appliance:10.0.0-232:*:*:*:*:*:*:*
ciscoemail_security_appliance_firmware9.9.6-026cpe:2.3:o:cisco:email_security_appliance_firmware:9.9.6-026:*:*:*:*:*:*:*
ciscoemail_security_appliance_firmware9.9.9-894cpe:2.3:o:cisco:email_security_appliance_firmware:9.9.9-894:*:*:*:*:*:*:*
ciscoemail_security_appliance_firmware10.0.0-082cpe:2.3:o:cisco:email_security_appliance_firmware:10.0.0-082:*:*:*:*:*:*:*
ciscoemail_security_appliance_firmware10.0.0-124cpe:2.3:o:cisco:email_security_appliance_firmware:10.0.0-124:*:*:*:*:*:*:*
ciscoemail_security_appliance_firmware10.0.0-125cpe:2.3:o:cisco:email_security_appliance_firmware:10.0.0-125:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	web_security_appliance	10.0.0-082	cpe:2.3:a:cisco:web_security_appliance:10.0.0-082:::::::*
cisco	web_security_appliance	10.0.0-124	cpe:2.3:a:cisco:web_security_appliance:10.0.0-124:::::::*
cisco	web_security_appliance	10.0.0-125	cpe:2.3:a:cisco:web_security_appliance:10.0.0-125:::::::*
cisco	web_security_appliance	10.0.0-203	cpe:2.3:a:cisco:web_security_appliance:10.0.0-203:::::::*
cisco	web_security_appliance	10.0.0-232	cpe:2.3:a:cisco:web_security_appliance:10.0.0-232:::::::*
cisco	email_security_appliance_firmware	9.9.6-026	cpe:2.3:o:cisco:email_security_appliance_firmware:9.9.6-026:::::::*
cisco	email_security_appliance_firmware	9.9.9-894	cpe:2.3:o:cisco:email_security_appliance_firmware:9.9.9-894:::::::*
cisco	email_security_appliance_firmware	10.0.0-082	cpe:2.3:o:cisco:email_security_appliance_firmware:10.0.0-082:::::::*
cisco	email_security_appliance_firmware	10.0.0-124	cpe:2.3:o:cisco:email_security_appliance_firmware:10.0.0-124:::::::*
cisco	email_security_appliance_firmware	10.0.0-125	cpe:2.3:o:cisco:email_security_appliance_firmware:10.0.0-125:::::::*

Rows per page:

1-10 of 121

CNA Affected

[
  {
    "product": "Cisco AsyncOS Software for Cisco ESA and Cisco WSA",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cisco AsyncOS Software for Cisco ESA and Cisco WSA"
      }
    ]
  }
]

References

www.securityfocus.com/bid/96239

www.securitytracker.com/id/1037831

www.securitytracker.com/id/1037832

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170215-asyncos

Social References

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

5.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

68.4%

JSON

Related for CVE-2017-3827