CVE-2012-1326

Summary

Cisco IronPort Web Security Appliance up to and including 7.5 does not validate the basic constraints of the certificate authority which could lead to MITM attacks

Affected Software

VendorProductVersion RangeStatus
CiscoIronPort Web Security Appliance<= 7.5affected

Weaknesses

  • Security Bypass

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References