CVE-2017-3827

MEDIUM

Cisco AsyncOS Software for Cisco ESA and WSA - Unauthenticated Filter Bypass via MIME Scanner

Title source: llm
STIX 2.1

Description

A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauthenticated, remote attacker to bypass configured user filters on the device. Affected Products: This vulnerability affects all releases prior to the first fixed release of Cisco AsyncOS Software for Cisco ESA and Cisco WSA, both virtual and hardware appliances, that are configured with message or content filters to scan incoming email attachments on the ESA or services scanning content of web access on the WSA. More Information: SCvb91473, CSCvc76500. Known Affected Releases: 10.0.0-203 9.9.9-894 WSA10.0.0-233.

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/96239
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1037831
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1037832

Scores

CVSS v3 5.8
EPSS 0.0193
EPSS Percentile 77.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Details

CWE
CWE-20
Status published
Products (13)
cisco/email_security_appliance_firmware 9.9.6-026
cisco/email_security_appliance_firmware 9.9.9-894
cisco/email_security_appliance_firmware 10.0.0-082
cisco/email_security_appliance_firmware 10.0.0-124
cisco/email_security_appliance_firmware 10.0.0-125
cisco/email_security_appliance_firmware 10.0.0-203
cisco/email_security_appliance_firmware 10.0.0-232
cisco/web_security_appliance 10.0.0-082
cisco/web_security_appliance 10.0.0-124
cisco/web_security_appliance 10.0.0-125
... and 3 more
Published Feb 22, 2017
Tracked Since Feb 18, 2026