Lucene search
K

29 matches found

Cisco
Cisco
added 2018/10/03 4:0 p.m.59 views

Cisco Adaptive Security Appliance TCP Syslog Denial of Service Vulnerability

A vulnerability in the TCP syslog module of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to exhaust the 1550-byte buffers on an affected device, resulting in a denial of service DoS condition. The...

6.8CVSS6.5AI score0.01842EPSS
Exploits0References1
ICS
ICS
added 2018/09/05 12:0 p.m.18 views

Cisco ASA and FWSM Security Advisories

Overview On October 9, 2013, Cisco released two security advisorieshttp://www.us-cert.gov/ncas/current-activity/2013/10/10/Cisco-Releases-Security-Advisories concerning multiple vulnerabilities within software for the following components: Cisco Adaptive Security Appliance ASA...

8.1AI score
Exploits0References17
OSV
OSV
added 2017/02/09 5:59 p.m.3 views

CVE-2017-3807

A vulnerability in Common Internet Filesystem CIFS code in the Clientless SSL VPN functionality of Cisco ASA Software, Major Releases 9.0-9.6, could allow an authenticated, remote attacker to cause a heap overflow. The vulnerability is due to insufficient validation of user supplied input. An...

8.8CVSS6.1AI score0.1476EPSS
Exploits1References4
Cisco
Cisco
added 2017/02/08 4:0 p.m.53 views

Cisco ASA Clientless SSL VPN CIFS Heap Overflow Vulnerability

A vulnerability in Common Internet Filesystem CIFS code in the Clientless SSL VPN functionality of Cisco ASA Software could allow an authenticated, remote attacker to cause a heap overflow. The vulnerability is due to insufficient validation of user supplied input. An attacker could exploit this...

8.8CVSS8.7AI score0.1476EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2017/02/08 12:0 a.m.5 views

PT-2017-2272 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco ASA Software versions 9.0 through 9.6 Description: The issue is caused by insufficient validation of user-supplied input and a heap overflow in the Common Internet Filesystem CIFS code of the Clientless SSL VPN functionality. This could...

8.8CVSS8.7AI score0.1476EPSS
Exploits1References8
The Hacker News
The Hacker News
added 2015/10/08 8:53 p.m.31 views

Hackers Backdooring Cisco WebVPN To Steal Customers’ Passwords

Virtual Private Networks VPNs, which is widely used by many businesses and organisations to provide secure access to their workers, are being abused to pilfer corporate user credentials. Researchers from security firm Volexity discovered a new attack campaign that targets a widely used VPN produc...

4.3CVSS6.3AI score0.01995EPSS
Exploits0
CVE
CVE
added 2014/10/10 10:0 a.m.64 views

CVE-2014-3393

The CVE-2014-3393 issue affects Cisco ASA Software’s Clientless SSL VPN Portal Customization framework. The vulnerability arises from improper authentication checks in the portal customization framework, allowing an unauthenticated, remote attacker to modify RAMFS customization objects and potent...

4.3CVSS6.1AI score0.01995EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/10/10 12:0 a.m.56 views

Cisco ASA Software Multiple Vulnerabilities (cisco-sa-20141008-asa)

The remote Cisco ASA device is affected by one or more of the following vulnerabilities : - A flaw exists in the SQLNET Inspection Engine due to improper handling of SQL REDIRECT packets. An attacker can exploit this vulnerability by sending a crafted sequence of REDIRECT packets through the...

9CVSS6.5AI score0.02797EPSS
Exploits0References14
Cisco
Cisco
added 2014/10/08 4:22 p.m.38 views

Cisco ASA Clientless SSL VPN Portal Customization Integrity Vulnerability

A vulnerability in the Clientless SSL VPN portal customization framework could allow an unauthenticated, remote attacker to modify the content of the Clientless SSL VPN portal, which could lead to several attacks including the stealing of credentials, cross-site scripting XSS, and other types of...

4.3CVSS6AI score0.01995EPSS
Exploits0References1
Rows per page
Query Builder