Lucene search

CVE-2014-0739

🗓️ 22 Feb 2014 21:09:55Reported by ciscoType

cve🔗 web.nvd.nist.gov👁 34 Views🌐 WEB

Race condition in Cisco ASA Software 9.1(.3) allows bypass of sec_db authentication via crafted TFTP request (CVE-2014-0739

Reporter	Title	Published	Views	Family All 5
Cvelist	CVE-2014-0739	22 Feb 201421:00	–	cvelist
seebug.org	Cisco Adaptive Security Appliance TFTP配置请求竞争条件漏洞	25 Feb 201400:00	–	seebug
Prion	Race condition	22 Feb 201421:55	–	prion
NVD	CVE-2014-0739	22 Feb 201421:55	–	nvd
Cisco	Cisco Adaptive Security Appliance Phone Proxy sec_db Race Condition Vulnerability	21 Feb 201415:43	–	cisco

Nvd

Node

cisco adaptive_security_appliance_softwareMatch9.1\(3\)

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0739
tools	www.tools.cisco.com/security/center/viewAlert.x

Parameter	Position	Path	Description	CWE
configuration-file	request body	/path/to/configuration/file	Race condition allows attackers to allow access to untrusted devices via crafted TFTP request.	CWE-287

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Feb 2014 21:55Current

7.2High risk

Vulners AI Score7.2

CVSS24.3

EPSS0.00184

CWE-287