Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Cisco Web Security Appliance (WSA) — Vulnerabilities & Security Advisories 25

All 25 CVE vulnerabilities found in Cisco Web Security Appliance (WSA), with AI-generated Chinese analysis, references, and POCs.

This page documents known vulnerabilities associated with the Cisco Web Security Appliance, specifically focusing on the Common Weakness Enumeration classification and its specific implementation tags within the software. It aggregates security issues that affect the appliance’s ability to filter web traffic, manage proxy services, and maintain network integrity against malicious content. The collection includes various types of flaws ranging from buffer overflows and input validation errors to cross-site scripting and insecure default configurations. This dataset covers vulnerability disclosures reported from the initial release of the product through recent security updates, providing a comprehensive timeline of identified security defects. By reviewing this information, security professionals can track vendor advisories related to Cisco’s web filtering solutions, gain a deeper understanding of specific weakness classes that have historically impacted enterprise web security infrastructure, and look up a product’s vulnerability history to assess long-term risk exposure. The page serves as a reference for IT administrators and security analysts to evaluate the security posture of deployed Cisco WSA units. It enables users to correlate reported issues with specific software versions and understand the remediation steps required to mitigate identified risks. This resource is intended for technical audiences responsible for maintaining secure web gateways and ensuring compliance with organizational security standards.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2023-20028 Cisco Secure Email Gateway, Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance Cross-Site Scripting Vulnerabilities CWE-79 5.4 Medium2023-06-28
CVE-2023-20120 Cisco Secure Email Gateway, Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance Cross-Site Scripting Vulnerabilities CWE-79 5.4 Medium2023-06-28
CVE-2022-20675 Multiple Cisco Security Products Simple Network Management Protocol Service Denial of Service Vulnerability CWE-248 5.3 Medium2022-04-06
CVE-2022-20781 Cisco Web Security Appliance Stored Cross-Site Scripting Vulnerability CWE-79 5.4 Medium2022-04-06
CVE-2022-20784 Cisco Web Security Appliance Filter Bypass Vulnerability CWE-20 5.8 Medium2022-04-06
CVE-2021-34698 Cisco Web Security Appliance Proxy Service Denial of Service Vulnerability CWE-401 8.6 High2021-10-06
CVE-2021-34749 Multiple Cisco Products Server Name Identification Data Exfiltration Vulnerability CWE-200 5.8 Medium2021-08-18
CVE-2021-1359 Cisco Web Security Appliance Privilege Escalation Vulnerability CWE-112 6.3 Medium2021-07-08
CVE-2021-1566 Cisco Email Security Appliance and Cisco Web Security Appliance Certificate Validation Vulnerability CWE-296 7.4 High2021-06-16
CVE-2021-1516 Cisco Content Security Management Appliance, Email Security Appliance, and Web Security Appliance Information Disclosure Vulnerability CWE-540 4.3 Medium2021-05-06
CVE-2021-1490 Cisco Web Security Appliance Cross-Site Scripting Vulnerability CWE-79 4.7 Medium2021-05-06
CVE-2021-1271 Cisco Web Security Appliance Stored Cross-Site Scripting Vulnerability CWE-79 4.8 Medium2021-01-20
CVE-2021-1129 Cisco Email Security Appliance, Cisco Content Security Management Appliance, and Cisco Web Security Appliance Information Disclosure Vulnerability CWE-201 5.3 Medium2021-01-20
CVE-2020-3367 Cisco Secure Web Appliance Privilege Escalation Vulnerability CWE-78 7.8 -2020-11-18
CVE-2019-15969 Cisco Web Security Appliance Management Interface Cross-Site Scripting Vulnerability CWE-79 6.1 -2020-09-23
CVE-2020-3117 Cisco Web Security Appliance and Cisco Content Security Management Appliance HTTP Header Injection Vulnerability CWE-113 4.7 -2020-09-23
CVE-2020-3547 Cisco Email Security Appliance, Cisco Content Security Management Appliance, and Cisco Web Security Appliance Information Disclosure Vulnerability CWE-200 4.3 Medium2020-09-04
CVE-2020-3164 Cisco ESA, Cisco WSA, and Cisco SMA GUI Denial of Service Vulnerability CWE-20 5.3 -2020-03-04
CVE-2019-15956 Cisco Web Security Appliance Unauthorized Device Reset Vulnerability CWE-284 8.8 -2019-11-26
CVE-2019-1884 Cisco Web Security Appliance Web Proxy Denial of Service Vulnerability CWE-20 6.5 -2019-07-04
CVE-2019-1886 Cisco Web Security Appliance HTTPS Certificate Denial of Service Vulnerability CWE-20 8.6 -2019-07-04
CVE-2019-1817 Cisco Web Security Appliance Malformed Request Denial of Service Vulnerability CWE-20 7.5 -2019-05-03
CVE-2019-1816 Cisco Web Security Appliance Privilege Escalation Vulnerability CWE-20 7.8 -2019-05-03
CVE-2019-1672 Cisco Web Security Appliance Decryption Policy Bypass Vulnerability CWE-400 5.3 -2019-02-08
CVE-2016-6469 Cisco AsyncOS for Cisco Web Security Appliance 拒绝服务漏洞 7.5 -2016-12-14

All 25 known CVE vulnerabilities affecting Cisco Web Security Appliance (WSA) with full Chinese analysis, references, and POCs where available.