CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-6386

The passthrough FTP feature on Cisco Web Security Appliance (WSA) devices with software 8.0.7-142 and 8.5.1-021 allows remote attackers to cause a denial of service (CPU consumption) via FTP sessions in which the control connection is ended after data transfer, aka Bug ID CSCut94150.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.8%

CVSS Severity

CVSS v2 Score 5.0

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151130-wsa
http://www.securitytracker.com/id/1034276
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151130-wsa
http://www.securitytracker.com/id/1034276

Products affected by CVE-2015-6386

Cisco » Web Security Appliance » Version: 8.0.7-142

cpe:2.3:a:cisco:web_security_appliance:8.0.7-142
Cisco » Web Security Appliance » Version: 8.5.1-021

cpe:2.3:a:cisco:web_security_appliance:8.5.1-021

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-6386

Products

Pricing

Contact Us