Description
Cisco Cloud Web Security before 3.0.1.7 allows remote attackers to bypass intended filtering protection mechanisms by leveraging improper handling of HTTP methods, aka Bug ID CSCut69743.
References (1)
Core 1
Core References
VDB Entry, Vendor Advisory vendor-advisory
x_refsource_cisco
https://tools.cisco.com/security/center/viewAlert.x?alertId=38221
Scores
CVSS v3
7.5
EPSS
0.0140
EPSS Percentile
69.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-119
CWE-19
Status
published
Products (1)
cisco/cloud_web_security
< 3.0.1.2
Published
Sep 19, 2017
Tracked Since
Feb 18, 2026