← Back

CVE-2016-1380

nvd nist
Published: May 25, 2016Modified: May 6, 2026

JSON object

Loading...
7.5
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

Cisco AsyncOS 8.0 before 8.0.6-119 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (proxy-process hang) via a crafted HTTP POST request, aka Bug ID CSCuo12171.

Affected (14)

Cisco
1 product
Web Security Appliance
Configuration A
14 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cisco
Web Security Appliance
Version 8.0.0-000
Web Security Appliance
Version 8.0.5
Web Security Appliance
Version 8.0.6-078
Web Security Appliance
Version 8.0.6-119
Web Security Appliance
Version 8.0.6
Web Security Appliance
Version 8.0.7-142
Web Security Appliance
Version 8.0.7
Web Security Appliance
Version 8.0.8-mr-113
Web Security Appliance
Version 8.5.0-000
Web Security Appliance
Version 8.5.0-497
Web Security Appliance
Version 8.5.1-021
Web Security Appliance
Version 8.5.2-024
Web Security Appliance
Version 8.5.2-027
Web Security Appliance
Version 8.5.3-055
Running on/withPlatform Versions
Cisco
Web Security Appliance
All versions

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (4)

Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.