Mageni Mageni Security LLC

Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

CVE-2021-1566

CVE information

Published

2 years ago

Last Modified

5 months ago

CVSSv2.0 Severity

Medium

CVSSv3.1 Severity

High

Impact Analysis

Share

Description

A vulnerability in the Cisco Advanced Malware Protection (AMP) for Endpoints integration of Cisco AsyncOS for Cisco Email Security Appliance (ESA) and Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to intercept traffic between an affected device and the AMP servers. This vulnerability is due to improper certificate validation when an affected device establishes TLS connections. A man-in-the-middle attacker could exploit this vulnerability by sending a crafted TLS packet to an affected device. A successful exploit could allow the attacker to spoof a trusted host and then extract sensitive information or alter certain API requests..

CVSSv2.0 Score

Severity
Medium
Base Score
5.8/10
Exploit Score
8.6/10
Access Vector
Network
Access Complexity
Medium
Authentication Required
None
Impact Score
4.9/10
Confidentiality Impact
Partial
Availability Impact
None
Integrity Impact
Partial

CVSSv3.1 Score

Severity
High
Base Score
7.4/10
Exploit Score
2.2/10
Access Vector
Network
Access Complexity
High
Privileges Required
None
Impact Score
5.2/10
Confidentiality Impact
High
Availability Impact
None
Integrity Impact
High
Scope
Unchanged
User Interaction
None

Products Affected

CPE Affected Vulnerable Excluding Edit
cpe:2.3:a:cisco:email_security_appliance:-:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*
  Yes
- 12.5.3-035
cpe:2.3:a:cisco:email_security_appliance:-:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*
  Yes
13.0 13.0.0-030
cpe:2.3:a:cisco:email_security_appliance:-:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*
  Yes
13.5 13.5.3-010
cpe:2.3:a:cisco:web_security_appliance:-:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*
  Yes
- 11.8.3-021
cpe:2.3:a:cisco:web_security_appliance:-:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*
  Yes
12.0.0 12.0.3-005
cpe:2.3:a:cisco:web_security_appliance:-:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*
  Yes
12.5.0 12.5.1-043

References