2 matches found
CVE-2016-1295
CVE-2016-1295 affects Cisco ASA Software 8.4. An unauthenticated, remote attacker can disclose sensitive data during a Cisco AnyConnect client authentication attempt, including the ASA software version. The underlying issue is improper protection of sensitive data during the authentication proces...
Design/Logic Flaw
The XML parser in the management interface in Cisco Adaptive Security Appliance ASA Software 8.4 allows remote authenticated users to cause a denial of service device crash via a crafted XML document, aka Bug ID CSCut14223...