Lucene search

[email protected]CVE-2017-6609

HistoryApr 20, 2017 - 10:59 p.m.

CVE-2017-6609

2017-04-2022:59:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cisco

asa software

ipsec

vulnerability

cisco bug ids

security

reload

cisco asa

nvd

cisco asa 1000v

cisco asa 5500 series

cisco asa 5500-x series

cisco asa services module

adaptive security virtual appliance

firepower 9300 asa security module

isa 3000 industrial security appliance

7.7 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

7.1 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

59.2%

JSON

A vulnerability in the IPsec code of Cisco ASA Software could allow an authenticated, remote attacker to cause a reload of the affected system. The vulnerability is due to improper parsing of malformed IPsec packets. An attacker could exploit this vulnerability by sending malformed IPsec packets to the affected system. Note: Only traffic directed to the affected system can be used to exploit this vulnerability. This vulnerability affects systems configured in routed firewall mode only and in single or multiple context mode. This vulnerability can be triggered by IPv4 and IPv6 traffic. An attacker needs to establish a valid IPsec tunnel before exploiting this vulnerability. This vulnerability affects Cisco ASA Software running on the following products: Cisco ASA 1000V Cloud Firewall, Cisco ASA 5500 Series Adaptive Security Appliances, Cisco ASA 5500-X Series Next-Generation Firewalls, Cisco ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers, Cisco Adaptive Security Virtual Appliance (ASAv), Cisco Firepower 9300 ASA Security Module, Cisco ISA 3000 Industrial Security Appliance. Fixed versions: 9.1(7.8) 9.2(4.15) 9.4(4) 9.5(3.2) 9.6(2). Cisco Bug IDs: CSCun16158.

CPENameOperatorVersion
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq9.3.2
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq9.1.1.4
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq9.1.4
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq9.2.2.7
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq9.1.5.21
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq9.1.3
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq9.1.2
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq9.2.3
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq9.3.1.1
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq9.1.1

CPE	Name	Operator	Version
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	9.3.2
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	9.1.1.4
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	9.1.4
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	9.2.2.7
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	9.1.5.21
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	9.1.3
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	9.1.2
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	9.2.3
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	9.3.1.1
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	9.1.1

Rows per page:

1-10 of 1061

References

www.securityfocus.com/bid/97936

www.securitytracker.com/id/1038316

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-asa-ipsec

7.7 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

7.1 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

59.2%

JSON

Related for CVE-2017-6609

cisco1 nessus1 prion1 openvas1