Cisco

Adaptive Security Appliance Software

305 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2014-2182

  • EPSS 0.58%
  • Veröffentlicht 29.04.2014 10:37:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco Adaptive Security Appliance (ASA) Software, when DHCPv6 replay is configured, allows remote attackers to cause a denial of service (device reload) via a crafted DHCPv6 packet, aka Bug ID CSCun45520.

5

CVE-2014-2154

  • EPSS 0.92%
  • Veröffentlicht 23.04.2014 11:52:59
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Memory leak in the SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to cause a denial of service (memory consumption and instability) via crafted SIP packets, aka Bug ID CSCuf67469.

5

CVE-2014-2128

  • EPSS 0.25%
  • Veröffentlicht 10.04.2014 04:34:51
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.47, 8.3 before 8.3(2.40), 8.4 before 8.4(7.3), 8.6 before 8.6(1.13), 9.0 before 9.0(3.8), and 9.1 before 9.1(3.2) allows remote attackers to bypass authen...

7.1

CVE-2014-2129

  • EPSS 0.4%
  • Veröffentlicht 10.04.2014 04:34:51
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.48), 8.4 before 8.4(6.5), 9.0 before 9.0(3.1), and 9.1 before 9.1(2.5) allows remote attackers to cause a denial of service (memory consumption or device r...

8.5

CVE-2014-2126

  • EPSS 0.54%
  • Veröffentlicht 10.04.2014 04:34:50
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.47), 8.4 before 8.4(7.5), 8.7 before 8.7(1.11), 9.0 before 9.0(3.10), and 9.1 before 9.1(3.4) allows remote authenticated users to gain privileges by leveraging level-0 ASDM access, ak...

8.5

CVE-2014-2127

  • EPSS 30.95%
  • Veröffentlicht 10.04.2014 04:34:50
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco Adaptive Security Appliance (ASA) Software 8.x before 8.2(5.48), 8.3 before 8.3(2.40), 8.4 before 8.4(7.9), 8.6 before 8.6(1.13), 9.0 before 9.0(4.1), and 9.1 before 9.1(4.3) does not properly process management-session information during privi...

6.1

CVE-2014-2120

Warnung
  • EPSS 80.12%
  • Veröffentlicht 19.03.2014 01:15:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the WebVPN login page in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun19025.

4.3

CVE-2014-0738

  • EPSS 0.1%
  • Veröffentlicht 22.02.2014 21:55:09
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Phone Proxy component in Cisco Adaptive Security Appliance (ASA) Software 9.1(.3) and earlier allows remote attackers to bypass authentication and change trust relationships by injecting a Certificate Trust List (CTL) file, aka Bug ID CSCuj66770.

7.1

CVE-2013-6696

  • EPSS 0.76%
  • Veröffentlicht 02.12.2013 22:55:36
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cisco Adaptive Security Appliance (ASA) Software does not properly handle errors during the processing of DNS responses, which allows remote attackers to cause a denial of service (device reload) via a malformed response, aka Bug ID CSCuj28861.

6.4

CVE-2013-6682

  • EPSS 0.22%
  • Veröffentlicht 13.11.2013 15:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The phone-proxy implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0.3.6 and earlier does not properly validate X.509 certificates, which allows remote attackers to cause a denial of service (connection-database corruption) via an i...