TROYANOSYVIRUS
Back to CVEs

CVE-2013-5537

N/A

Description

The web framework on Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) devices does not properly manage the state of HTTP and HTTPS sessions, which allows remote attackers to cause a denial of service (management GUI outage) via multiple TCP connections, aka Bug IDs CSCuj59411, CSCuf89818, and CSCuh05635.

CVE Details

CVSS v3.1 ScoreN/A
Published10/24/2013
Last Modified4/11/2025
Sourcenvd
Honeypot Sightings0

Affected Products

cisco:content_security_management_appliancecisco:email_security_appliance_firmwarecisco:web_security_appliance

Weaknesses (CWE)

CWE-20

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5537(psirt@cisco.com)
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5537(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.