← Back

CVE-2015-6321

nvd nist
Published: Nov 6, 2015Modified: May 6, 2026

JSON object

Loading...
7.8
Vector
AV:N/AC:L/Au:N/C:N/I:N/A:C
Exploitability: 10.0 / Impact: 6.9
Source: NVD

Description

Cisco AsyncOS before 8.5.7-042, 9.x before 9.1.0-032, 9.1.x before 9.1.1-023, and 9.5.x and 9.6.x before 9.6.0-042 on Email Security Appliance (ESA) devices; before 9.1.0-032, 9.1.1 before 9.1.1-005, and 9.5.x before 9.5.0-025 on Content Security Management Appliance (SMA) devices; and before 7.7.0-725 and 8.x before 8.0.8-113 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (memory consumption) via a flood of TCP packets, aka Bug IDs CSCus79774, CSCus79777, and CSCzv95795.

Affected (40)

Cisco
3 products
Web Security Appliance
Content Security Management Appliance
Email Security Appliance
Configuration A
10 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Web Security Appliance
Version 5.6.0-623
Web Security Appliance
Version 6.0.0-000
Web Security Appliance
Version 7.5.0-000
Web Security Appliance
Version 7.5.0-825
Web Security Appliance
Version 7.5.1-000
Web Security Appliance
Version 7.5.2-000
Web Security Appliance
Version 7.7.0-000
Web Security Appliance
Version 7.7.1-000
Web Security Appliance
Version 8.0.0-000
Web Security Appliance
Version 8.5.0.000
Configuration B
16 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Content Security Management Appliance
Version 7.8.0-328
Content Security Management Appliance
Version 7.8.1-001
Content Security Management Appliance
Version 7.9.0-201
Content Security Management Appliance
Version 7.9.2-116
Content Security Management Appliance
Version 8.0.1-031
Content Security Management Appliance
Version 8.1.0-001
Content Security Management Appliance
Version 8.1.1-033
Content Security Management Appliance
Version 8.1.2-000
Content Security Management Appliance
Version 8.2.0-238
Content Security Management Appliance
Version 8.3.0-350
Content Security Management Appliance
Version 8.3.5-061
Content Security Management Appliance
Version 8.3.6-014
Content Security Management Appliance
Version 8.3.7-010
Content Security Management Appliance
Version 8.4.0-150
Content Security Management Appliance
Version 9.0.0-073
Content Security Management Appliance
Version 9.1.0-004
Configuration C
14 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Email Security Appliance
Version 7.6.1-000
Email Security Appliance
Version 7.6.3-000
Email Security Appliance
Version 7.7.0-000
Email Security Appliance
Version 7.7.1-000
Email Security Appliance
Version 7.8.0-311
Email Security Appliance
Version 8.5.6-052
Email Security Appliance
Version 8.6.0-011
Email Security Appliance
Version 8.9.1-000
Email Security Appliance
Version 8.9.2-032
Email Security Appliance
Version 9.0.0-212
Email Security Appliance
Version 9.0.5-000
Email Security Appliance
Version 9.1.0-011
Email Security Appliance
Version 9.4.4-000
Email Security Appliance
Version 9.5.0-000

Related CWEs

CWE-399
CWE-399

References (6)

Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.