What is CVE-2021-1425?

CVE-2021-1425 is a medium-severity vulnerability in Cisco Secure Email And Web Manager, classified under Insertion of Sensitive Information into Sent Data. CVSS score: 4.3/10. Published 2024-11-18.

How severe is CVE-2021-1425?

Medium severity. CVSS v3 base score is 4.3 out of 10.

Vulnerability in Cisco Secure Email And Web Manager

CVE-2021-1425

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to access sensitive information on an affected de…

EPSS: 0.004 (63.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/RL:X/RC:X/E:X.

Affected products

Cisco Secure Email And Web Manager — versions N/A

Weakness classification (CWE)

CWE-201 — Insertion of Sensitive Information into Sent Data

References

cisco-sa-esa-sma-info-disclo-VOu2GHbZ

Frequently asked questions

What is CVE-2021-1425?: CVE-2021-1425 is a medium-severity vulnerability in Cisco Secure Email And Web Manager, classified under Insertion of Sensitive Information into Sent Data. CVSS score: 4.3/10. Published 2024-11-18.
How severe is CVE-2021-1425?: Medium severity. CVSS v3 base score is 4.3 out of 10.