Cisco ASA Software Multiple Vulnerabilities (cisco-sa-20150408-asa)

The remote Cisco Adaptive Security Appliance ASA is missing a vendor-supplied security patch and is therefore affected by the following vulnerabilities : - A flaw exists in the failover ipsec feature due to not properly handling failover communication messages. An unauthenticated attacker, sendin...

CVE-2015-0675

The failover ipsec implementation in Cisco Adaptive Security Appliance ASA Software 9.1 before 9.16, 9.2 before 9.23.3, and 9.3 before 9.33 does not properly validate failover communication messages, which allows remote attackers to reconfigure an ASA device, and consequently obtain administrativ...