CVE-2017-3800
Severity
5.8MEDIUM
EPSS
0.2%
top 56.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJan 26
Latest updateMay 17
Description
A vulnerability in the content scanning engine of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to bypass configured message or content filters on the device. Affected Products: This vulnerability affects all releases prior to the first fixed release of Cisco AsyncOS Software for Cisco Email Security Appliances, both virtual and hardware appliances, if the software is configured to apply a message filter or content filter to inco…
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4
Affected Packages2 packages
🔴Vulnerability Details
2GHSA▶
GHSA-79x7-9p27-9hg6: A vulnerability in the content scanning engine of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, rem↗2022-05-17
CVEList▶
CVE-2017-3800: A vulnerability in the content scanning engine of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, rem↗2017-01-26
📋Vendor Advisories
6Cisco▶
Cisco Aironet 1800, 2800, and 3800 Series Access Points MAC Authentication Bypass Vulnerability↗2017-11-01
Cisco▶
Cisco Aironet 1560, 2800, and 3800 Series Access Point Platforms 802.11 Denial of Service Vulnerability↗2017-11-01
Cisco▶
Cisco Aironet 1560, 2800, and 3800 Series Access Point Platforms Extensible Authentication Protocol Denial of Service Vulnerability↗2017-11-01
Cisco▶
Cisco Aironet 3800 Series Access Points Protected Management Frames User Denial of Service Vulnerability↗2017-11-01
Cisco▶
Cisco Aironet 1800, 2800, and 3800 Series Access Points Plug-and-Play Arbitrary Code Execution Vulnerability↗2017-05-03