Cisco

Adaptive Security Appliance

22 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2014-0655

  • EPSS 0.56%
  • Published 08.01.2014 21:55:06
  • Last modified 11.04.2025 00:51:21

The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to change the user-cache contents via a replay attack involving crafted RADIUS Change of Authorization (CoA) messages, aka Bug ID C...

4.3

CVE-2014-0653

  • EPSS 0.67%
  • Published 08.01.2014 21:55:06
  • Last modified 11.04.2025 00:51:21

The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to trigger authentication-state modifications via a crafted NetBIOS logout probe response, aka Bug ID CSCuj45340.

7.1

CVE-2013-6696

  • EPSS 0.76%
  • Published 02.12.2013 22:55:36
  • Last modified 11.04.2025 00:51:21

Cisco Adaptive Security Appliance (ASA) Software does not properly handle errors during the processing of DNS responses, which allows remote attackers to cause a denial of service (device reload) via a malformed response, aka Bug ID CSCuj28861.

4.3

CVE-2013-3463

  • EPSS 1.17%
  • Published 30.08.2013 01:55:08
  • Last modified 11.04.2025 00:51:21

The protocol-inspection feature on Cisco Adaptive Security Appliances (ASA) devices does not properly implement the idle timeout, which allows remote attackers to cause a denial of service (connection-table exhaustion) via crafted requests that use a...

4.3

CVE-2013-3414

  • EPSS 0.52%
  • Published 25.07.2013 15:53:16
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the WebVPN portal login page on Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCug83080.

7.8

CVE-2013-3382

  • EPSS 0.43%
  • Published 26.06.2013 19:55:01
  • Last modified 11.04.2025 00:51:21

The Next-Generation Firewall (aka NGFW, formerly CX Context-Aware Security) module 9.x before 9.1.1.9 and 9.1.2.x before 9.1.2.12 for Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to cause a denial of service (device reload...

4.9

CVE-2013-1199

  • EPSS 0.47%
  • Published 18.04.2013 18:55:07
  • Last modified 11.04.2025 00:51:21

Race condition in the CIFS implementation in the rewriter module in the Clientless SSL VPN component on Cisco Adaptive Security Appliances (ASA) devices allows remote authenticated users to cause a denial of service (device reload) by accessing resou...

5

CVE-2013-1194

  • EPSS 0.38%
  • Published 18.04.2013 18:55:06
  • Last modified 11.04.2025 00:51:21

The ISAKMP implementation on Cisco Adaptive Security Appliances (ASA) devices generates different responses for IKE aggressive-mode messages depending on whether invalid VPN groups are specified, which allows remote attackers to enumerate groups via ...

5.4

CVE-2012-5415

  • EPSS 0.33%
  • Published 16.04.2013 14:04:30
  • Last modified 11.04.2025 00:51:21

Race condition on Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to cause a denial of service (CPU consumption or device reload) by establishing multiple connections, leading to improper handling of hash lookups for secondar...

7.8

CVE-2013-1150

  • EPSS 0.69%
  • Published 11.04.2013 10:55:01
  • Last modified 11.04.2025 00:51:21

The authentication-proxy implementation on Cisco Adaptive Security Appliances (ASA) devices with software 7.x before 7.2(5.10), 8.0 before 8.0(5.31), 8.1 and 8.2 before 8.2(5.38), 8.3 before 8.3(2.37), 8.4 before 8.4(5.3), 8.5 and 8.6 before 8.6(1.10...