Lucene search

[email protected]CVE-2009-4913

HistoryOct 03, 2022 - 4:24 p.m.

CVE-2009-4913

2022-10-0316:24:02

CWE-264

[email protected]

web.nvd.nist.gov

cisco

asa

ipv6

vulnerability

remote attackers

access restrictions

nvd

cve-2009-4913

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

59.8%

JSON

The IPv6 implementation on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) exposes IP services on the “far side of the box,” which might allow remote attackers to bypass intended access restrictions via IPv6 packets, aka Bug ID CSCso58622.

Affected configurations

NVD

Node

ciscoasa_5580Range≤8.1\(1\)

CPENameOperatorVersion
cisco:asa_5580cisco asa 5580le8.1\(1\)

CPE	Name	Operator	Version
cisco:asa_5580	cisco asa 5580	le	8.1\(1\)

References

www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

59.8%

JSON

Related for CVE-2009-4913

prion1 nvd1 cvelist1