AI Score
Confidence
High
EPSS
Percentile
48.5%
Format string vulnerability in Cisco Email Security Appliance (ESA) 7.6.0 and 8.0.0 allows remote attackers to cause a denial of service (memory overwrite or service outage) via format string specifiers in an HTTP request, aka Bug ID CSCug21497.
tools.cisco.com/security/center/viewAlert.x?alertId=40844
www.securitytracker.com/id/1033531