CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-1886

A vulnerability in the HTTPS decryption feature of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to insufficient validation of Secure Sockets Layer (SSL) server certificates. An attacker could exploit this vulnerability by installing a malformed certificate in a web server and sending a request to it through the Cisco WSA. A successful exploit could allow the attacker to cause an unexpected restart of the proxy process on an affected device.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.3%

CVSS Severity

CVSS v3 Score 8.6

CVSS v2 Score 5.0

References

Products affected by CVE-2019-1886

Cisco » Web Security Appliance » Version: 10.5.2-072

cpe:2.3:a:cisco:web_security_appliance:10.5.2-072
Cisco » Web Security Appliance » Version: 10.5.3-025

cpe:2.3:a:cisco:web_security_appliance:10.5.3-025
Cisco » Web Security Appliance » Version: 11.7.0-fcs-334

cpe:2.3:a:cisco:web_security_appliance:11.7.0-fcs-334
Cisco » Asyncos » Version: 10.5

cpe:2.3:o:cisco:asyncos:10.5
Cisco » Asyncos » Version: 10.5.1-296

cpe:2.3:o:cisco:asyncos:10.5.1-296
Cisco » Asyncos » Version: 11.5

cpe:2.3:o:cisco:asyncos:11.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-1886

Products

Pricing

Contact Us