Lucene search

K
CiscoAdaptive Security Appliance Software*

23 matches found

CVE
CVE
added 2019/08/07 10:15 p.m.101 views

CVE-2019-1945

Multiple vulnerabilities in the smart tunnel functionality of Cisco Adaptive Security Appliance (ASA) could allow an authenticated, local attacker to elevate privileges to the root user or load a malicious library file while the tunnel is being established. For more information about these vulnerab...

7.8CVSS6.8AI score0.00055EPSS
CVE
CVE
added 2019/08/07 10:15 p.m.96 views

CVE-2019-1934

A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker to elevate privileges and execute administrative functions on an affected device. The vulnerability is due to insufficient authorization validation...

8.8CVSS8.7AI score0.00406EPSS
CVE
CVE
added 2019/08/07 10:15 p.m.94 views

CVE-2019-1944

Multiple vulnerabilities in the smart tunnel functionality of Cisco Adaptive Security Appliance (ASA) could allow an authenticated, local attacker to elevate privileges to the root user or load a malicious library file while the tunnel is being established. For more information about these vulnerab...

7.3CVSS6.8AI score0.00047EPSS
CVE
CVE
added 2019/10/02 7:15 p.m.69 views

CVE-2019-15256

A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (D...

8.6CVSS8.5AI score0.01156EPSS
CVE
CVE
added 2019/10/02 7:15 p.m.67 views

CVE-2019-12678

A vulnerability in the Session Initiation Protocol (SIP) inspection module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vu...

8.6CVSS7.5AI score0.00915EPSS
CVE
CVE
added 2019/05/03 3:29 p.m.67 views

CVE-2019-1693

A vulnerability in the WebVPN service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper manageme...

7.7CVSS6.6AI score0.00441EPSS
CVE
CVE
added 2019/05/03 5:29 p.m.65 views

CVE-2019-1713

A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The vulnerability is due to insufficient CSRF protections for the we...

9.3CVSS8.7AI score0.0025EPSS
CVE
CVE
added 2019/05/03 5:29 p.m.65 views

CVE-2019-1714

A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 Single Sign-On (SSO) for Clientless SSL VPN (WebVPN) and AnyConnect Remote Access VPN in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthent...

8.6CVSS7AI score0.01652EPSS
CVE
CVE
added 2019/10/02 7:15 p.m.63 views

CVE-2019-12698

A vulnerability in the WebVPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause increased CPU utilization on an affected device. The vulnerability is due to excessive processing load...

7.8CVSS6.1AI score0.00517EPSS
CVE
CVE
added 2019/10/02 7:15 p.m.61 views

CVE-2019-12695

A vulnerability in the Clientless SSL VPN (WebVPN) portal of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface ...

6.1CVSS6AI score0.00153EPSS
CVE
CVE
added 2019/05/03 3:29 p.m.58 views

CVE-2019-1695

A vulnerability in the detection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, adjacent attacker to send data directly to the kernel of an affected device. The vulnerability exists because the software im...

6.5CVSS5.2AI score0.00054EPSS
CVE
CVE
added 2019/05/03 4:29 p.m.57 views

CVE-2019-1706

A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual Appliance (ASAv) and Firepower 2100 Series running Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause an unexpected reload of the device that results in ...

8.6CVSS8.5AI score0.00543EPSS
CVE
CVE
added 2019/05/03 3:29 p.m.56 views

CVE-2019-1687

A vulnerability in the TCP proxy functionality for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the device to restart unexpectedly, resulting in a denial of service (DoS) condition. The vu...

7.8CVSS6.9AI score0.0025EPSS
CVE
CVE
added 2019/10/02 7:15 p.m.53 views

CVE-2019-12676

A vulnerability in the Open Shortest Path First (OSPF) implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (Do...

7.4CVSS7.3AI score0.00107EPSS
CVE
CVE
added 2019/05/03 4:29 p.m.51 views

CVE-2019-1708

A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE) feature for the Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a memory leak or a reload of ...

8.6CVSS8.6AI score0.01113EPSS
CVE
CVE
added 2019/05/03 3:29 p.m.50 views

CVE-2018-15388

A vulnerability in the WebVPN login process of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause increased CPU utilization on an affected device. The vulnerability is due to excessive processin...

8.6CVSS8.5AI score0.00517EPSS
CVE
CVE
added 2019/05/03 4:29 p.m.49 views

CVE-2019-1701

Multiple vulnerabilities in the WebVPN service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the WebVPN portal of an affected device...

4.8CVSS5.1AI score0.00155EPSS
CVE
CVE
added 2019/10/02 7:15 p.m.48 views

CVE-2019-12673

A vulnerability in the FTP inspection engine of Cisco Adaptive Security (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient valid...

8.6CVSS7.5AI score0.00641EPSS
CVE
CVE
added 2019/10/02 7:15 p.m.46 views

CVE-2019-12693

A vulnerability in the Secure Copy (SCP) feature of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to the use of an incorrect data type for a length variable. An attacker could exp...

6.8CVSS5.3AI score0.00378EPSS
CVE
CVE
added 2019/10/02 7:15 p.m.45 views

CVE-2019-12677

A vulnerability in the Secure Sockets Layer (SSL) VPN feature of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition that prevents the creation of new SSL/Transport Layer Security (TLS) connections to an affecte...

7.7CVSS6.5AI score0.00543EPSS
CVE
CVE
added 2019/05/03 3:29 p.m.45 views

CVE-2019-1694

A vulnerability in the TCP processing engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabili...

8.6CVSS8.4AI score0.01113EPSS
CVE
CVE
added 2019/05/03 4:29 p.m.41 views

CVE-2019-1705

A vulnerability in the remote access VPN session manager of Cisco Adaptive Security Appliance (ASA) Software could allow a unauthenticated, remote attacker to cause a denial of service (DoS) condition on the remote access VPN services. The vulnerability is due to an issue with the remote access VPN...

5.9CVSS5.5AI score0.00525EPSS
CVE
CVE
added 2019/05/03 4:29 p.m.37 views

CVE-2019-1697

A vulnerability in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a den...

7.8CVSS7.2AI score0.00433EPSS