CVE-2015-0689

HIGH

Cisco Cloud Web Security <3.0.1.7 - Auth Bypass

Title source: llm
STIX 2.1

Description

Cisco Cloud Web Security before 3.0.1.7 allows remote attackers to bypass intended filtering protection mechanisms by leveraging improper handling of HTTP methods, aka Bug ID CSCut69743.

References (1)

Core 1
Core References
VDB Entry, Vendor Advisory vendor-advisory x_refsource_cisco
https://tools.cisco.com/security/center/viewAlert.x?alertId=38221

Scores

CVSS v3 7.5
EPSS 0.0140
EPSS Percentile 69.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-119 CWE-19
Status published
Products (1)
cisco/cloud_web_security < 3.0.1.2
Published Sep 19, 2017
Tracked Since Feb 18, 2026