CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-4278

Cisco Email Security Appliance (ESA) devices with software 8.5.6-106 and 9.5.0-201 allow remote attackers to cause a denial of service (per-domain e-mail reception outage) by placing malformed DMARC policy data in DNS TXT records for a domain, aka Bug ID CSCuv14806.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.4%

CVSS Severity

CVSS v2 Score 4.3

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=39940
http://www.securitytracker.com/id/1032961
http://tools.cisco.com/security/center/viewAlert.x?alertId=39940
http://www.securitytracker.com/id/1032961

Products affected by CVE-2015-4278

Cisco » Email Security Appliance Firmware » Version: 8.5.6-106

cpe:2.3:o:cisco:email_security_appliance_firmware:8.5.6-106
Cisco » Email Security Appliance Firmware » Version: 9.5.0-201

cpe:2.3:o:cisco:email_security_appliance_firmware:9.5.0-201

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-4278

Products

Pricing

Contact Us