Cisco AsyncOS 8.x before 8.0.8-113, 8.1.x and 8.5.x before 8.5.3-051, 8.6.x and 8.7.x before 8.7.0-171-LD, and 8.8.x before 8.8.0-085 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (memory consumption) via multiple file-range requests, aka Bug ID CSCur39155.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Web_security_appliance | Cisco | 8.0.0-000 (including) | 8.0.0-000 (including) |
| Web_security_appliance | Cisco | 8.0.5 (including) | 8.0.5 (including) |
| Web_security_appliance | Cisco | 8.0.5-hp1 (including) | 8.0.5-hp1 (including) |
| Web_security_appliance | Cisco | 8.0.6 (including) | 8.0.6 (including) |
| Web_security_appliance | Cisco | 8.0.6-078 (including) | 8.0.6-078 (including) |
| Web_security_appliance | Cisco | 8.0.7-142 (including) | 8.0.7-142 (including) |
| Web_security_appliance | Cisco | 8.0.8-mr-113 (including) | 8.0.8-mr-113 (including) |
| Web_security_appliance | Cisco | 8.5.0-497 (including) | 8.5.0-497 (including) |
| Web_security_appliance | Cisco | 8.5.0.000 (including) | 8.5.0.000 (including) |
| Web_security_appliance | Cisco | 8.5.2-024 (including) | 8.5.2-024 (including) |