3 matches found
Cisco Adaptive Security Appliance Software Software-Based SSL/TLS DoS (cisco-sa-ftd-tls-decrypt-dos-BMxYjm8M)
According to its self-reported version, Cisco ASA Software is affected by a denial of service DoS vulnerability in the software-based SSL/TLS message handler due to insufficient validation of SSL/TLS messages upon decryption. An unauthenticated, remote attacker can exploit this, by sending a...
Cisco Firepower Threat Defense Software Software-Based SSL/TLS DoS (cisco-sa-ftd-tls-decrypt-dos-BMxYjm8M)
According to its self-reported version, Cisco FTD Software is affected by a denial of service DoS vulnerability in the software-based SSL/TLS message handler due to insufficient validation of SSL/TLS messages upon decryption. An unauthenticated, remote attacker can exploit this, by sending a...
CVE-2021-34783
CVE-2021-34783 affects Cisco ASA and Firepower Threat Defense (FTD) software’s SSL/TLS decryption path. The vulnerability arises from insufficient validation of SSL/TLS messages in the software-based TLS handler, allowing an unauthenticated, remote attacker to force a device reload and cause a Do...