The proxy engine on Cisco Web Security Appliance (WSA) devices allows remote attackers to bypass intended proxying restrictions via a malformed HTTP method, aka Bug ID CSCus79174.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0628 | Vendor Advisory |
Configurations
Information
Published : 2015-02-19 18:59
Updated : 2015-02-20 10:37
NVD link : CVE-2015-0628
Mitre link : CVE-2015-0628
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
cisco
- web_security_appliance