Cisco

Adaptive Security Appliance Software

305 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2014-2182

  • EPSS 0.58%
  • Published 29.04.2014 10:37:03
  • Last modified 12.04.2025 10:46:40

Cisco Adaptive Security Appliance (ASA) Software, when DHCPv6 replay is configured, allows remote attackers to cause a denial of service (device reload) via a crafted DHCPv6 packet, aka Bug ID CSCun45520.

5

CVE-2014-2154

  • EPSS 0.92%
  • Published 23.04.2014 11:52:59
  • Last modified 12.04.2025 10:46:40

Memory leak in the SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to cause a denial of service (memory consumption and instability) via crafted SIP packets, aka Bug ID CSCuf67469.

5

CVE-2014-2128

  • EPSS 0.25%
  • Published 10.04.2014 04:34:51
  • Last modified 12.04.2025 10:46:40

The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.47, 8.3 before 8.3(2.40), 8.4 before 8.4(7.3), 8.6 before 8.6(1.13), 9.0 before 9.0(3.8), and 9.1 before 9.1(3.2) allows remote attackers to bypass authen...

7.1

CVE-2014-2129

  • EPSS 0.4%
  • Published 10.04.2014 04:34:51
  • Last modified 12.04.2025 10:46:40

The SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.48), 8.4 before 8.4(6.5), 9.0 before 9.0(3.1), and 9.1 before 9.1(2.5) allows remote attackers to cause a denial of service (memory consumption or device r...

8.5

CVE-2014-2126

  • EPSS 0.54%
  • Published 10.04.2014 04:34:50
  • Last modified 12.04.2025 10:46:40

Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.47), 8.4 before 8.4(7.5), 8.7 before 8.7(1.11), 9.0 before 9.0(3.10), and 9.1 before 9.1(3.4) allows remote authenticated users to gain privileges by leveraging level-0 ASDM access, ak...

8.5

CVE-2014-2127

  • EPSS 30.95%
  • Published 10.04.2014 04:34:50
  • Last modified 12.04.2025 10:46:40

Cisco Adaptive Security Appliance (ASA) Software 8.x before 8.2(5.48), 8.3 before 8.3(2.40), 8.4 before 8.4(7.9), 8.6 before 8.6(1.13), 9.0 before 9.0(4.1), and 9.1 before 9.1(4.3) does not properly process management-session information during privi...

6.1

CVE-2014-2120

Warning
  • EPSS 80.12%
  • Published 19.03.2014 01:15:04
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the WebVPN login page in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun19025.

4.3

CVE-2014-0738

  • EPSS 0.1%
  • Published 22.02.2014 21:55:09
  • Last modified 11.04.2025 00:51:21

The Phone Proxy component in Cisco Adaptive Security Appliance (ASA) Software 9.1(.3) and earlier allows remote attackers to bypass authentication and change trust relationships by injecting a Certificate Trust List (CTL) file, aka Bug ID CSCuj66770.

7.1

CVE-2013-6696

  • EPSS 0.76%
  • Published 02.12.2013 22:55:36
  • Last modified 11.04.2025 00:51:21

Cisco Adaptive Security Appliance (ASA) Software does not properly handle errors during the processing of DNS responses, which allows remote attackers to cause a denial of service (device reload) via a malformed response, aka Bug ID CSCuj28861.

6.4

CVE-2013-6682

  • EPSS 0.22%
  • Published 13.11.2013 15:55:04
  • Last modified 11.04.2025 00:51:21

The phone-proxy implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0.3.6 and earlier does not properly validate X.509 certificates, which allows remote attackers to cause a denial of service (connection-database corruption) via an i...