{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-25T13:26:21.662","vulnerabilities":[{"cve":{"id":"CVE-2018-0353","sourceIdentifier":"psirt@cisco.com","published":"2018-06-07T12:29:00.777","lastModified":"2024-11-21T03:38:02.680","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in traffic-monitoring functions in Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to circumvent Layer 4 Traffic Monitor (L4TM) functionality and bypass security protections. The vulnerability is due to a change in the underlying operating system software that is responsible for monitoring affected traffic. An attacker could exploit this vulnerability by sending crafted IP packets to an affected device. A successful exploit could allow the attacker to pass traffic through the device, which the WSA was configured to deny. This vulnerability affects both IPv4 and IPv6 traffic. This vulnerability affects Cisco AsyncOS versions for WSA on both virtual and hardware appliances running any release of the 10.5.1, 10.5.2, or 11.0.0 WSA Software. The WSA is vulnerable if it is configured for L4TM. Cisco Bug IDs: CSCvg78875."},{"lang":"es","value":"Una vulnerabilidad en las funciones de monitorización de tráfico en Cisco Web Security Appliance (WSA) podría permitir que un atacante remoto no autenticado omita la funcionalidad L4TM (Layer 4 Traffic Monitor) y omita las protecciones de seguridad. La vulnerabilidad se debe a un cambio en el software del sistema operativo subyacente responsable de monitorizar el tráfico afectado. Un atacante podría explotar esta vulnerabilidad enviando paquetes IP manipulados a un dispositivo afectado. Su explotación con éxito podría permitir que el atacante pase tráfico a través del dispositivo, que WSA debía denegar por su configuración. Esta vulnerabilidad afecta al tráfico IPv4 y IPv6. La vulnerabilidad afecta a las versiones de Cisco AsyncOS para WSA, tanto en máquinas virtuales como físicas que ejecuten cualquier distribución del software WSA en versiones 10.5.1, 10.5.2 o 11.0.0. WSA es vulnerable si está configurado para L4TM. Cisco Bug IDs: CSCvg78875."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-254"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:web_security_appliance:10.5.1:*:*:*:*:*:*:*","matchCriteriaId":"1F7A98C9-8D22-405F-996E-825A2B482D19"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:web_security_appliance:10.5.1-296:*:*:*:*:*:*:*","matchCriteriaId":"AC67BB76-C4E8-4AC2-B5F5-4FB36336273D"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:web_security_appliance:10.5.2:*:*:*:*:*:*:*","matchCriteriaId":"A2957D7F-3EDD-474F-AE55-8EB2ADBDB4A2"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:web_security_appliance:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"1E9EA61C-3D1D-463A-802A-0073183CE39C"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:web_security_appliance:11.5.0-fcs-442:*:*:*:*:*:*:*","matchCriteriaId":"6FCBF076-11BC-4940-BC19-152A14DC0B7C"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/104417","source":"psirt@cisco.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041081","source":"psirt@cisco.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-wsa","source":"psirt@cisco.com","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/104417","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041081","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-wsa","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}