CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:A/AC:M/Au:N/C:N/I:N/A:C
EPSS
Percentile
78.7%
A vulnerability in the DHCP relay function of Cisco Adaptive Security Appliance (ASA) software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device.
The vulnerability is due to insufficient validation of crafted DHCP packets. Cisco ASA Software is affected by this vulnerability only when configured as a DHCP version 6 relay. An attacker could exploit this vulnerability by sending crafted DHCP version 6 packets through an affected device.
Cisco has confirmed the vulnerability in a security notice and released software updates.
To exploit this vulnerability, an attacker must be on the same broadcast or collision domain as a targeted device. This access requirement reduces the likelihood of a successful exploit.
Cisco indicates through the CVSS score that functional exploit code exists; however, the code is not known to be publicly available.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | adaptive_security_appliance_software | 9.0.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0.1:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 9.0.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0.2:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 9.0.2.10 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0.2.10:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 9.0.3 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0.3:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 9.0.3.6 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0.3.6:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 9.0.3.8 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0.3.8:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 9.0.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0.4:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 9.0.4.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0.4.1:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 9.0.4.5 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0.4.5:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 9.0.4.7 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0.4.7:*:*:*:*:*:*:* |