CVE-2015-6309

Cisco Email Security Appliance (ESA) 8.5.6-106 and 9.6.0-042 allows remote authenticated users to cause a denial of service (file-descriptor consumption and device reload) via crafted HTTP requests, aka Bug ID CSCuw32211.

Published: Oct 2, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-6309
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:L/Au:S/C:N/I:N/A:C

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
cisco / email_security_appliance	9.6.0-042	9.6.0-042.x
cisco / email_security_appliance_firmware	8.5.6-106	8.5.6-106.x

http://tools.cisco.com/security/center/viewAlert.x?alertId=41241
http://www.securitytracker.com/id/1033716

Vulnerability Database

289,697

CVE-2015-6309