CVE-2011-3298

2011-10-0610:55:00

CWE-287

[email protected]

web.nvd.nist.gov

cisco

asa

fwsm

cve-2011-3298

security

bypass authentication

tacacs+

6.8 Medium

AI Score

Confidence

Low

7.9 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:M/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

79.6%

JSON

Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.0(8.13), 7.1 and 7.2 before 7.2(5.3), 8.0 before 8.0(5.24), 8.1 before 8.1(2.50), 8.2 before 8.2(5), 8.3 before 8.3(2.18), 8.4 before 8.4(1.10), and 8.5 before 8.5(1.1) and Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7) allow remote attackers to bypass authentication via a crafted TACACS+ reply, aka Bug IDs CSCto40365 and CSCto74274.

CPENameOperatorVersion
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.0
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.0\(0\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.0\(1\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.0\(2\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.0\(4\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.0\(5\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.0\(5.2\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.0\(6\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.0\(6.7\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.0\(7\)

CPE	Name	Operator	Version
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.0
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.0\(0\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.0\(1\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.0\(2\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.0\(4\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.0\(5\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.0\(5.2\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.0\(6\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.0\(6.7\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.0\(7\)