CVE-2017-3870

MEDIUM

Cisco Web Security Appliance - URL Filter Bypass via Email Scanning

Title source: llm
STIX 2.1

Description

A vulnerability in the URL filtering feature of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to bypass a configured URL filter rule. Affected Products: This vulnerability affects all releases prior to the first fixed release of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA), both virtual and hardware appliances, that are configured with URL filters for email scanning. More Information: CSCvc69700. Known Affected Releases: 8.5.3-069 9.1.1-074 9.1.2-010.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/96907
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1038043

Scores

CVSS v3 5.8
EPSS 0.0152
EPSS Percentile 71.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Details

CWE
CWE-119
Status published
Products (4)
cisco/web_security_appliance 8.5.3-069
cisco/web_security_appliance 9.1.1-074
cisco/web_security_appliance 9.1.2-010
n/a/Cisco Web Security Appliance Cisco Web Security Appliance
Published Mar 17, 2017
Tracked Since Feb 18, 2026