Lucene search

[email protected]CVE-2013-3458

HistorySep 08, 2013 - 3:17 a.m.

CVE-2013-3458

2013-09-0803:17:00

CWE-119

[email protected]

web.nvd.nist.gov

cisco

asa

smp

x.509 certificates

denial of service

vulnerability

nvd

cve-2013-3458

6.9 Medium

AI Score

Confidence

High

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

49.2%

JSON

Cisco Adaptive Security Appliances (ASA) devices, when SMP is used, do not properly process X.509 certificates, which allows remote attackers to cause a denial of service (device crash) via a large volume of (1) SSL or (2) TLS traffic, aka Bug ID CSCuh19462.

CPENameOperatorVersion
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq-

CPE	Name	Operator	Version
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	-

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3458

6.9 Medium

AI Score

Confidence

High

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

49.2%

JSON

Related for CVE-2013-3458

cvelist1 cisco1 nessus1 prion1