Information disclosure

2015-04-1301:59:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.0%

JSON

The failover ipsec implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1 before 9.1(6), 9.2 before 9.2(3.3), and 9.3 before 9.3(3) does not properly validate failover communication messages, which allows remote attackers to reconfigure an ASA device, and consequently obtain administrative control, by sending crafted UDP packets over the local network to the failover interface, aka Bug ID CSCur21069.

CPENameOperatorVersion
adaptive_security_appliance_softwareeq9.3.2
adaptive_security_appliance_softwareeq9.1.1.4
adaptive_security_appliance_softwareeq9.1.4
adaptive_security_appliance_softwareeq9.2.2.7
adaptive_security_appliance_softwareeq9.1.5.21
adaptive_security_appliance_softwareeq9.1.3
adaptive_security_appliance_softwareeq9.1.2
adaptive_security_appliance_softwareeq9.2.3
adaptive_security_appliance_softwareeq9.3.1.1
adaptive_security_appliance_softwareeq9.1.1

Name	Operator	Version
adaptive_security_appliance_software	eq	9.3.2
adaptive_security_appliance_software	eq	9.1.1.4
adaptive_security_appliance_software	eq	9.1.4
adaptive_security_appliance_software	eq	9.2.2.7
adaptive_security_appliance_software	eq	9.1.5.21
adaptive_security_appliance_software	eq	9.1.3
adaptive_security_appliance_software	eq	9.1.2
adaptive_security_appliance_software	eq	9.2.3
adaptive_security_appliance_software	eq	9.3.1.1
adaptive_security_appliance_software	eq	9.1.1