CVE-2015-6293: Cisco AsyncOS 8.x before 8.0.8-113, 8.1.x and 8.5.x before 8.5.3-051, 8.6.x and 8.7.x before 8.7.0-171-LD, and 8.8.x before 8.8.0-085 on Web Security Appliance…

high7.8CVSS 3.1

AVNACLAuNCNINAC

Cisco AsyncOS 8.x before 8.0.8-113, 8.1.x and 8.5.x before 8.5.3-051, 8.6.x and 8.7.x before 8.7.0-171-LD, and 8.8.x before 8.8.0-085 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (memory consumption) via multiple file-range requests, aka Bug ID CSCur39155.

Affected

10 ranges

Vendor	Product	Version range	Fixed in
cisco	web_security_appliance	—	—
cisco	web_security_appliance	—	—
cisco	web_security_appliance	—	—
cisco	web_security_appliance	—	—
cisco	web_security_appliance	—	—
cisco	web_security_appliance	—	—
cisco	web_security_appliance	—	—
cisco	web_security_appliance	—	—
cisco	web_security_appliance	—	—
cisco	web_security_appliance_range_request	—	—