Lucene search

[email protected]CVE-2013-5507

HistoryOct 13, 2013 - 10:20 a.m.

CVE-2013-5507

2013-10-1310:20:00

CWE-310

[email protected]

web.nvd.nist.gov

cisco

asa

software

ipsec

vpn

denial of service

cve-2013-5507

nvd

6.9 Medium

AI Score

Confidence

High

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

48.0%

JSON

The IPsec implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1 before 9.1(1.7), when an IPsec VPN tunnel is enabled, allows remote attackers to cause a denial of service (device reload) via a (1) ICMP or (2) ICMPv6 packet that is improperly handled during decryption, aka Bug ID CSCue18975.

CPENameOperatorVersion
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq9.1

CPE	Name	Operator	Version
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	9.1

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131009-asa

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5507

6.9 Medium

AI Score

Confidence

High

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

48.0%

JSON

Related for CVE-2013-5507

prion1 cvelist1 nessus1 cisco1 securityvulns1