Lucene search

[email protected]CVE-2012-0335

HistoryMay 02, 2012 - 10:09 a.m.

CVE-2012-0335

2012-05-0210:09:00

CWE-287

[email protected]

web.nvd.nist.gov

cisco

asa

5500 series

software

firewall

bug

csctx42746

nvd

cve-2012-0335

6.5 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

71.2%

JSON

Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 through 8.4 do not properly perform proxy authentication during attempts to cut through a firewall, which allows remote attackers to obtain sensitive information via a connection attempt, aka Bug ID CSCtx42746.

CPENameOperatorVersion
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.2
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.2\(1\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.2\(1.22\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.2\(2\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.2\(2.5\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.2\(2.7\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.2\(2.8\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.2\(2.10\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.2\(2.14\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq7.2\(2.15\)

CPE	Name	Operator	Version
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.2
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.2\(1\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.2\(1.22\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.2\(2\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.2\(2.5\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.2\(2.7\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.2\(2.8\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.2\(2.10\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.2\(2.14\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	7.2\(2.15\)

Rows per page:

1-10 of 441

References

secunia.com/advisories/49139

www.cisco.com/web/software/280775065/89203/ASA-843-Interim-Release-Notes.html

www.securityfocus.com/bid/53558

www.securitytracker.com/id?1027008

6.5 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

71.2%

JSON

Related for CVE-2012-0335

prion1 cvelist1 nessus1 cisco1