CVE-2019-1672

CWE-400Uncontrolled Resource Consumption5 documents5 sources
Severity
5.8MEDIUM
EPSS
0.2%
top 61.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Cisco WEB Security Appliance (wsa)Cisco WEB Security Appliance
Timeline
PublishedFeb 8
Latest updateMay 13

Description

A vulnerability in the Decryption Policy Default Action functionality of the Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to bypass a configured drop policy and allow traffic onto the network that should have been denied. The vulnerability is due to the incorrect handling of SSL-encrypted traffic when Decrypt for End-User Notification is disabled in the configuration. An attacker could exploit this vulnerability by sending a SSL connection through the affect

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

NVDcisco/web_security_appliance10.1.0-204, 10.5.2-072, 11.5.1-fcs-115+2

🔴Vulnerability Details

2
GHSA
GHSA-xgwc-rmqj-wxqr: A vulnerability in the Decryption Policy Default Action functionality of the Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote2022-05-13
CVEList
Cisco Web Security Appliance Decryption Policy Bypass Vulnerability2019-02-08

💥Exploits & PoCs

1
Exploit-DB
DameWare Remote Support 12.0.0.509 - 'Host' Buffer Overflow (SEH)2019-07-16

📋Vendor Advisories

1
Cisco
Cisco Web Security Appliance Decryption Policy Bypass Vulnerability2019-02-06
CVE-2019-1672 (MEDIUM CVSS 5.8) | A vulnerability in the Decryption P | cvebase.io