THREATOPS
THREAT OPSThreat News › Cisco Secure Web Appliance Authentication Bypass Vulnerability

Cisco Secure Web Appliance Authentication Bypass Vulnerability

lowcisco_psirtPublished 2026-04-16

<p>A vulnerability in the authentication service feature of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to bypass authentication policy requirements.</p> <p>This vulnerability is due to improper validation of user-supplied authentication input in HTTP requests. An attacker could exploit this vulnerability by sending HTTP requests that conta

Indicators of compromise

Original source: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wsa-auth-bypass-6YZkTQhd?vs_f=Cisco%20Security%20Advisory%26vs_cat=Security%20Intelligence%26vs_type=RSS%26vs_p=Cisco%20Secure%20Web%20Appliance%20Authentication%20Bypass%20Vulnerability%26vs_k=1