CVE-2014-0653

EPSS 0.67%
Published 08.01.2014 21:55:06
Last modified 11.04.2025 00:51:21
Source psirt@cisco.com
Teams watchlist Login
Open Login

The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to trigger authentication-state modifications via a crafted NetBIOS logout probe response, aka Bug ID CSCuj45340.

Affected products Warnungen 0 Metrics 2 CWE 1 References 10

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Adaptive Security Appliance

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.67%	0.706

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://osvdb.org/101834

http://secunia.com/advisories/56366

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0653

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=32363

Vendor Advisory

http://www.securityfocus.com/bid/64708

Third Party Advisory

VDB Entry

http://www.securitytracker.com/id/1029570

Third Party Advisory

VDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/90165

https://nvd.nist.gov/vuln/detail/CVE-2014-0653

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-0653

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-0653

EUVD