Vulnerability in Cisco Content_security_management_appliance

CVE-2014-2119

The End User Safelist/Blocklist (aka SLBL) service in Cisco AsyncOS Software for Email Security Appliance (ESA) before 7.6.3-023 and 8.x before 8.0.1-023 and Cisco Content Security Management Appliance (SMA) before 7.9.1-110 and 8.x before…

EPSS: 0.014 (80.6th percentile) — read the EPSS interpretation.

Affected products

Cisco Content_security_management_appliance
Cisco Email_security_appliance_firmware
Cisco Ironport_asyncos — versions 8.0, 8.0.1, 8.1
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

20140319 Cisco AsyncOS Software Code Execution Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)