Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2019-1884

A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient input validation mechanisms for certain fields in HTTP/HTTPS requests sent through an affected device. A successful attacker could exploit this vulnerability by sending a malicious HTTP/HTTPS request through an affected device. An exploit could allow the attacker to force the device to stop processing traffic, resulting in a DoS condition.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.1%
CVSS Severity
CVSS v3 Score 7.7
CVSS v2 Score 4.0
Products affected by CVE-2019-1884
  • Cisco » Web Security Appliance » Version: 10.1.4-017
    cpe:2.3:a:cisco:web_security_appliance:10.1.4-017
  • Cisco » Web Security Appliance » Version: 10.5.2-072
    cpe:2.3:a:cisco:web_security_appliance:10.5.2-072
  • Cisco » Web Security Appliance » Version: 11.5.1-fcs-125
    cpe:2.3:a:cisco:web_security_appliance:11.5.1-fcs-125
  • Cisco » Web Security Appliance » Version: 11.7.0-256
    cpe:2.3:a:cisco:web_security_appliance:11.7.0-256
  • Cisco » Asyncos » Version: 10.1.0
    cpe:2.3:o:cisco:asyncos:10.1.0
  • Cisco » Asyncos » Version: 10.1.1-230
    cpe:2.3:o:cisco:asyncos:10.1.1-230
  • Cisco » Asyncos » Version: 10.1.1-234
    cpe:2.3:o:cisco:asyncos:10.1.1-234
  • Cisco » Asyncos » Version: 10.1.1-235
    cpe:2.3:o:cisco:asyncos:10.1.1-235
  • Cisco » Asyncos » Version: 10.1.2-036
    cpe:2.3:o:cisco:asyncos:10.1.2-036
  • Cisco » Asyncos » Version: 10.1.3-054
    cpe:2.3:o:cisco:asyncos:10.1.3-054
  • Cisco » Asyncos » Version: 10.1.4-007
    cpe:2.3:o:cisco:asyncos:10.1.4-007
  • Cisco » Asyncos » Version: 10.5
    cpe:2.3:o:cisco:asyncos:10.5
  • Cisco » Asyncos » Version: 10.5.1-296
    cpe:2.3:o:cisco:asyncos:10.5.1-296
  • Cisco » Asyncos » Version: 11.5
    cpe:2.3:o:cisco:asyncos:11.5
  • Cisco » Asyncos » Version: 11.7
    cpe:2.3:o:cisco:asyncos:11.7
  • Cisco » Asyncos » Version: 11.7.0-406
    cpe:2.3:o:cisco:asyncos:11.7.0-406


Products
Pricing
Contact Us

Shodan ® - All rights reserved