7.1
CVE-2012-4659
- EPSS 0.56%
- Published 29.10.2012 20:55:01
- Last modified 11.04.2025 00:51:21
- Source psirt@cisco.com
- Teams watchlist Login
- Open Login
The AAA functionality in the IPv4 SSL VPN implementations on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.2 before 8.2(5.30) and 8.3 before 8.3(2.34) allows remote attackers to cause a denial of service (device reload) via a crafted authentication response, aka Bug ID CSCtz04566.
Data is provided by the National Vulnerability Database (NVD)
Cisco ≫ Adaptive Security Appliance Software Version8.2
Cisco ≫ Catalyst 6503-e Version-
Cisco ≫ Catalyst 6504-e Version-
Cisco ≫ Catalyst 6506-e Version-
Cisco ≫ Catalyst 6509-e Version-
Cisco ≫ Catalyst 6509-neb-a Version-
Cisco ≫ Catalyst 6509-v-e Version-
Cisco ≫ Catalyst 6513 Version-
Cisco ≫ Catalyst 6513-e Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.56% | 0.656 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 8.6 | 6.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:C
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.