CVE-2015-6293
Severity CVSS v4.0:
Pending analysis
Type:
CWE-399
Resource Management Errors
Publication date:
06/11/2015
Last modified:
12/04/2025
Description
Cisco AsyncOS 8.x before 8.0.8-113, 8.1.x and 8.5.x before 8.5.3-051, 8.6.x and 8.7.x before 8.7.0-171-LD, and 8.8.x before 8.8.0-085 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (memory consumption) via multiple file-range requests, aka Bug ID CSCur39155.
Impact
Base Score 2.0
7.80
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:cisco:web_security_appliance:8.0.0-000:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:web_security_appliance:8.0.5:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:web_security_appliance:8.0.5:hp1:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:web_security_appliance:8.0.6:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:web_security_appliance:8.0.6-078:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:web_security_appliance:8.0.7-142:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:web_security_appliance:8.0.8-mr-113:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:web_security_appliance:8.5.0-497:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:web_security_appliance:8.5.0.000:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:web_security_appliance:8.5.2-024:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page