Cisco

Adaptive Security Appliance Software

305 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2016-6367

Warning Media report Exploit
  • EPSS 23.09%
  • Published 18.08.2016 18:59:01
  • Last modified 12.04.2025 10:46:40

Cisco Adaptive Security Appliance (ASA) Software before 8.4(1) on ASA 5500, ASA 5500-X, PIX, and FWSM devices allows local users to gain privileges via invalid CLI commands, aka Bug ID CSCtu74257 or EPICBANANA.

8.8

CVE-2016-6366

Warning Media report Exploit
  • EPSS 90.98%
  • Published 18.08.2016 18:59:00
  • Last modified 12.04.2025 10:46:40

Buffer overflow in Cisco Adaptive Security Appliance (ASA) Software through 9.4.2.3 on ASA 5500, ASA 5500-X, ASA Services Module, ASA 1000V, ASAv, Firepower 9300 ASA Security Module, PIX, and FWSM devices allows remote authenticated users to execute ...

5.3

CVE-2016-1445

  • EPSS 0.21%
  • Published 12.07.2016 01:59:45
  • Last modified 12.04.2025 10:46:40

Cisco Adaptive Security Appliance (ASA) Software 8.2 through 9.4.3.3 allows remote attackers to bypass intended ICMP Echo Reply ACLs via vectors related to subtypes.

6.8

CVE-2016-1379

  • EPSS 0.45%
  • Published 28.05.2016 01:59:00
  • Last modified 12.04.2025 10:46:40

Cisco Adaptive Security Appliance (ASA) Software 9.0 through 9.5.1 mishandles IPsec error processing, which allows remote authenticated users to cause a denial of service (memory consumption) via crafted (1) LAN-to-LAN or (2) Remote Access VPN tunnel...

6.8

CVE-2016-1385

  • EPSS 0.45%
  • Published 26.05.2016 15:59:01
  • Last modified 12.04.2025 10:46:40

The XML parser in Cisco Adaptive Security Appliance (ASA) Software through 9.5.2 allows remote authenticated users to cause a denial of service (instability, memory consumption, or device reload) by leveraging (1) administrative access or (2) Clientl...

7.8

CVE-2016-1367

  • EPSS 0.39%
  • Published 21.04.2016 11:00:03
  • Last modified 12.04.2025 10:46:40

The DHCPv6 relay implementation in Cisco Adaptive Security Appliance (ASA) Software 9.4.1 allows remote attackers to cause a denial of service (device reload) via crafted DHCPv6 packets, aka Bug ID CSCus23248.

7.8

CVE-2015-6360

  • EPSS 17.94%
  • Published 21.04.2016 10:59:00
  • Last modified 12.04.2025 10:46:40

The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.

10

CVE-2016-1287

Exploit
  • EPSS 89.78%
  • Published 11.02.2016 18:59:00
  • Last modified 12.04.2025 10:46:40

Buffer overflow in the IKEv1 and IKEv2 implementations in Cisco ASA Software before 8.4(7.30), 8.7 before 8.7(1.18), 9.0 before 9.0(4.38), 9.1 before 9.1(7), 9.2 before 9.2(4.5), 9.3 before 9.3(3.7), 9.4 before 9.4(2.4), and 9.5 before 9.5(2.2) on AS...

5.3

CVE-2016-1295

  • EPSS 0.59%
  • Published 16.01.2016 05:59:07
  • Last modified 12.04.2025 10:46:40

Cisco Adaptive Security Appliance (ASA) Software 8.4 allows remote attackers to obtain sensitive information via an AnyConnect authentication attempt, aka Bug ID CSCuo65775.

4.3

CVE-2015-6423

  • EPSS 0.15%
  • Published 15.01.2016 03:59:08
  • Last modified 12.04.2025 10:46:40

The DCERPC Inspection implementation in Cisco Adaptive Security Appliance (ASA) Software 9.4.1 through 9.5.1 allows remote authenticated users to bypass an intended DCERPC-only ACL by sending arbitrary network traffic, aka Bug ID CSCuu67782.