Vulnerability Details CVE-2016-1380
Cisco AsyncOS 8.0 before 8.0.6-119 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (proxy-process hang) via a crafted HTTP POST request, aka Bug ID CSCuo12171.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.6%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.8
References
Products affected by CVE-2016-1380
-
cpe:2.3:a:cisco:web_security_appliance:8.0.0-000
-
cpe:2.3:a:cisco:web_security_appliance:8.0.5
-
cpe:2.3:a:cisco:web_security_appliance:8.0.6
-
cpe:2.3:a:cisco:web_security_appliance:8.0.6-078
-
cpe:2.3:a:cisco:web_security_appliance:8.0.6-119
-
cpe:2.3:a:cisco:web_security_appliance:8.0.7
-
cpe:2.3:a:cisco:web_security_appliance:8.0.7-142
-
cpe:2.3:a:cisco:web_security_appliance:8.0.8-mr-113
-
cpe:2.3:a:cisco:web_security_appliance:8.5.0-000
-
cpe:2.3:a:cisco:web_security_appliance:8.5.0-497
-
cpe:2.3:a:cisco:web_security_appliance:8.5.1-021
-
cpe:2.3:a:cisco:web_security_appliance:8.5.2-024
-
cpe:2.3:a:cisco:web_security_appliance:8.5.2-027
-
cpe:2.3:a:cisco:web_security_appliance:8.5.3-055
-
cpe:2.3:h:cisco:web_security_appliance:-