CVE-2015-6292
Published Nov 6, 2015
Last updated 8 years ago
Overview
- Description
- The proxy-cache implementation in Cisco AsyncOS 8.0.x before 8.0.7-151, 8.1.x and 8.5.x before 8.5.2-004, 8.6.x and 8.7.x before 8.7.0-171-LD, and 8.8.x before 8.8.0-085 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (memory consumption) via multiple proxy connections, aka Bug ID CSCus10922.
- Source
- ykramarz@cisco.com
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 6.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:C
Weaknesses
- nvd@nist.gov
- CWE-399
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:web_security_appliance:8.0.0-000:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "33C867BF-2CD0-4058-9738-22C769B03D97"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_appliance:8.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AFBF729F-2AD0-4291-AF41-184CCA230D28"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_appliance:8.0.5:hp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "03D69069-DFA8-44D5-BFA2-D83A3BB9C13A"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_appliance:8.0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9D8750D2-5250-43BE-AC50-981902C0CF5C"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_appliance:8.0.6-119:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D6003553-A114-42E0-B817-D176F3A6112B"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_appliance:8.5.0-497:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3E9AF842-92F9-43A7-834A-0FFB3B619EDA"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_appliance:8.5.0.000:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "27B25873-F2FA-4876-9222-362EDC3FB00A"
}
],
"operator": "OR"
}
]
}
]