CVE-2021-34698

Name of the Vulnerable Software and Affected Versions Cisco Web Security Appliance (WSA) versions not specified

Description A vulnerability in the proxy service of Cisco AsyncOS for Cisco Web Security Appliance could allow an unauthenticated, remote attacker to exhaust system memory and cause a denial of service (DoS) condition on an affected device. This issue is due to improper memory management in the proxy service. An attacker could exploit this by establishing a large number of HTTPS connections to the affected device, potentially causing the system to stop processing new connections. Manual intervention may be required to recover from this situation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.