// For flags

CVE-2021-1516

Cisco Content Security Management Appliance, Email Security Appliance, and Web Security Appliance Information Disclosure Vulnerability

Severity Score

6.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Track
*SSVC
Descriptions

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance (SMA), Cisco Email Security Appliance (ESA), and Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability exists because confidential information is included in HTTP requests that are exchanged between the user and the device. An attacker could exploit this vulnerability by looking at the raw HTTP requests that are sent to the interface. A successful exploit could allow the attacker to obtain some of the passwords that are configured throughout the interface.

Una vulnerabilidad en la interfaz de administración basada en web de Cisco AsyncOS Software para Cisco Content Security Management Appliance (SMA), Cisco Email Security Appliance (ESA), y Cisco Web Security Appliance (WSA), podría permitir a un atacante remoto autenticado acceder a información confidencial. en un dispositivo afectado. La vulnerabilidad se presenta porque la información confidencial es incluída en las peticiones HTTP que son intercambiadas entre el usuario y el dispositivo. Un atacante podría explotar esta vulnerabilidad al observar las peticiones HTTP sin procesar que son enviadas a la interfaz. Una explotación con éxito podría permitir al atacante obtener algunas de las contraseñas que están configuradas en toda la interfaz

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
Single
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:Track
Exploitation
None
Automatable
No
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2020-11-13 CVE Reserved
  • 2021-05-06 CVE Published
  • 2023-07-29 EPSS Updated
  • 2024-11-08 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-540: Inclusion of Sensitive Information in Source Code
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cisco
Search vendor "Cisco"
Content Security Management Appliance
Search vendor "Cisco" for product "Content Security Management Appliance"
--
Affected
in Cisco
Search vendor "Cisco"
Asyncos
Search vendor "Cisco" for product "Asyncos"
< 14.0
Search vendor "Cisco" for product "Asyncos" and version " < 14.0"
-
Safe
Cisco
Search vendor "Cisco"
Email Security Appliance
Search vendor "Cisco" for product "Email Security Appliance"
--
Affected
in Cisco
Search vendor "Cisco"
Asyncos
Search vendor "Cisco" for product "Asyncos"
< 14.0
Search vendor "Cisco" for product "Asyncos" and version " < 14.0"
-
Safe
Cisco
Search vendor "Cisco"
Web Security Appliance
Search vendor "Cisco" for product "Web Security Appliance"
--
Affected
in Cisco
Search vendor "Cisco"
Asyncos
Search vendor "Cisco" for product "Asyncos"
< 14.0
Search vendor "Cisco" for product "Asyncos" and version " < 14.0"
-
Safe
Cisco
Search vendor "Cisco"
Ironport Web Security Appliance
Search vendor "Cisco" for product "Ironport Web Security Appliance"
13.6.2-023
Search vendor "Cisco" for product "Ironport Web Security Appliance" and version "13.6.2-023"
-
Affected
Cisco
Search vendor "Cisco"
Ironport Web Security Appliance
Search vendor "Cisco" for product "Ironport Web Security Appliance"
14.0.0-090
Search vendor "Cisco" for product "Ironport Web Security Appliance" and version "14.0.0-090"
-
Affected
Cisco
Search vendor "Cisco"
Ironport Web Security Appliance
Search vendor "Cisco" for product "Ironport Web Security Appliance"
14.0.0-133
Search vendor "Cisco" for product "Ironport Web Security Appliance" and version "14.0.0-133"
-
Affected
Cisco
Search vendor "Cisco"
Ironport Web Security Appliance
Search vendor "Cisco" for product "Ironport Web Security Appliance"
14.0.0-292
Search vendor "Cisco" for product "Ironport Web Security Appliance" and version "14.0.0-292"
-
Affected
Cisco
Search vendor "Cisco"
Ironport Web Security Appliance
Search vendor "Cisco" for product "Ironport Web Security Appliance"
14.0.0-300
Search vendor "Cisco" for product "Ironport Web Security Appliance" and version "14.0.0-300"
-
Affected