CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-4236

Cisco AsyncOS on Email Security Appliance (ESA) devices with software 8.5.6-073, 8.5.6-074, and 9.0.0-461, when clustering is enabled, allows remote attackers to cause a denial of service (clustering and SSH outage) via a packet flood, aka Bug IDs CSCur13704 and CSCuq05636.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.5%

CVSS Severity

CVSS v2 Score 4.3

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=39785
http://www.securityfocus.com/bid/75703
http://www.securitytracker.com/id/1032855
http://tools.cisco.com/security/center/viewAlert.x?alertId=39785
http://www.securityfocus.com/bid/75703
http://www.securitytracker.com/id/1032855

Products affected by CVE-2015-4236

Cisco » Email Security Appliance » Version: 8.5.6-074

cpe:2.3:h:cisco:email_security_appliance:8.5.6-074
Cisco » Email Security Appliance Firmware » Version: 8.5.6-073

cpe:2.3:o:cisco:email_security_appliance_firmware:8.5.6-073
Cisco » Email Security Appliance Firmware » Version: 9.0.0-461

cpe:2.3:o:cisco:email_security_appliance_firmware:9.0.0-461

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-4236

Products

Pricing

Contact Us