CVE-2017-6751

Name of the Vulnerable Software and Affected Versions Cisco Web Security Appliance (WSA) versions 9.0.0-485 through 10.1.0-204

Description A vulnerability in the web proxy functionality could allow an unauthenticated, remote attacker to forward traffic from the web proxy interface to the administrative management interface, effectively bypassing access controls. This issue affects both virtual and hardware versions of the Cisco Web Security Appliance.

Recommendations For versions 9.0.0-485 through 10.1.0-204, consider restricting access to the administrative management interface until a patch is available. As a temporary workaround, consider disabling the web proxy functionality to minimize the risk of exploitation. Restrict access to the web proxy interface to minimize the risk of exploitation.