cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2016-6406,https://securityvulnerability.io/vulnerability/CVE-2016-6406,,"Cisco IronPort AsyncOS 9.1.2-023, 9.1.2-028, 9.1.2-036, 9.7.2-046, 9.7.2-047, 9.7.2-054, 10.0.0-124, and 10.0.0-125 on Email Security Appliance (ESA) devices, when Enrollment Client before 1.0.2-065 is installed, allows remote attackers to obtain root access via a connection to the testing/debugging interface, aka Bug ID CSCvb26017.",Cisco,Email Security Appliance Firmware,9.8,CRITICAL,0.00343999988399446,false,,false,false,false,,,false,false,,2016-09-22T22:00:00.000Z,0
CVE-2015-6309,https://securityvulnerability.io/vulnerability/CVE-2015-6309,,"Cisco Email Security Appliance (ESA) 8.5.6-106 and 9.6.0-042 allows remote authenticated users to cause a denial of service (file-descriptor consumption and device reload) via crafted HTTP requests, aka Bug ID CSCuw32211.",Cisco,"Email Security Appliance,Email Security Appliance Firmware",,,0.0006799999973736703,false,,false,false,false,,,false,false,,2015-10-02T15:00:00.000Z,0
CVE-2015-4278,https://securityvulnerability.io/vulnerability/CVE-2015-4278,,"Cisco Email Security Appliance (ESA) devices with software 8.5.6-106 and 9.5.0-201 allow remote attackers to cause a denial of service (per-domain e-mail reception outage) by placing malformed DMARC policy data in DNS TXT records for a domain, aka Bug ID CSCuv14806.",Cisco,Email Security Appliance Firmware,,,0.0018599999602884054,false,,false,false,false,,,false,false,,2015-07-16T19:00:00.000Z,0
CVE-2015-4236,https://securityvulnerability.io/vulnerability/CVE-2015-4236,,"Cisco AsyncOS on Email Security Appliance (ESA) devices with software 8.5.6-073, 8.5.6-074, and 9.0.0-461, when clustering is enabled, allows remote attackers to cause a denial of service (clustering and SSH outage) via a packet flood, aka Bug IDs CSCur13704 and CSCuq05636.",Cisco,"Email Security Appliance,Email Security Appliance Firmware",,,0.003280000062659383,false,,false,false,false,,,false,false,,2015-07-10T19:00:00.000Z,0
CVE-2015-0734,https://securityvulnerability.io/vulnerability/CVE-2015-0734,,"Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Email Security Appliance (ESA) 8.5.6-106 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in a (1) GET or (2) POST request, aka Bug ID CSCut87743.",Cisco,Email Security Appliance Firmware,,,0.0007300000288523734,false,,false,false,false,,,false,false,,2015-05-15T01:00:00.000Z,0
CVE-2015-0624,https://securityvulnerability.io/vulnerability/CVE-2015-0624,,"The web framework in Cisco AsyncOS on Email Security Appliance (ESA), Content Security Management Appliance (SMA), and Web Security Appliance (WSA) devices allows remote attackers to trigger redirects via a crafted HTTP header, aka Bug IDs CSCur44412, CSCur44415, CSCur89630, CSCur89636, CSCur89633, and CSCur89639.",Cisco,"Content Security Management Appliance,Web Security Appliance,Email Security Appliance Firmware",,,0.0029100000392645597,false,,false,false,false,,,false,false,,2015-02-21T11:00:00.000Z,0
CVE-2014-2195,https://securityvulnerability.io/vulnerability/CVE-2014-2195,,"Cisco AsyncOS on Email Security Appliance (ESA) and Content Security Management Appliance (SMA) devices, when Active Directory is enabled, does not properly handle group names, which allows remote attackers to gain role privileges by leveraging group-name similarity, aka Bug ID CSCum86085.",Cisco,"Asyncos,Content Security Management Appliance,Email Security Appliance Firmware",,,0.0016400000313296914,false,,false,false,false,,,false,false,,2014-05-20T10:00:00.000Z,0
CVE-2013-3395,https://securityvulnerability.io/vulnerability/CVE-2013-3395,,"Cross-site request forgery (CSRF) vulnerability in the web framework on Cisco IronPort Web Security Appliance (WSA) devices, Email Security Appliance (ESA) devices, and Content Security Management Appliance (SMA) devices allows remote attackers to hijack the authentication of arbitrary users, aka Bug IDs CSCuh70263, CSCuh70323, and CSCuh26634.",Cisco,"Content Security Management Appliance,Web Security Appliance,Email Security Appliance Firmware",,,0.0009399999980814755,false,,false,false,false,,,false,false,,2013-07-02T03:43:00.000Z,0