Firewall Services Module Security Vulnerabilities and Issues — Firewall Services Module CVE List

Lucene search

CiscoFirewall Services Module

11 matches found

CVE•added 2007/02/16 12:28 a.m.•51 views

CVE-2007-0962

Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when "inspect http" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic.

7.8CVSS6.6AI score0.02825EPSS

CVE•added 2007/02/16 12:28 a.m.•47 views

CVE-2007-0964

Cisco FWSM 3.x before 3.1(3.18), when authentication is configured to use "aaa authentication match" or "aaa authentication include", allows remote attackers to cause a denial of service (device reboot) via a malformed HTTPS request.

5.4CVSS6.9AI score0.00617EPSS

CVE•added 2007/02/16 12:28 a.m.•47 views

CVE-2007-0966

Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.11), when the HTTPS server is enabled, allows remote attackers to cause a denial of service (device reboot) via certain HTTPS traffic.

7.8CVSS6.6AI score0.01482EPSS

CVE•added 2007/02/16 12:28 a.m.•44 views

CVE-2007-0968

Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.

9CVSS6.2AI score0.01EPSS

CVE•added 2007/10/18 9:17 p.m.•44 views

CVE-2007-5570

Cisco Firewall Services Module (FWSM) 3.2(1), and 3.1(5) and earlier, allows remote attackers to cause a denial of service (device reload) via a crafted HTTPS request, aka CSCsi77844.

7.8CVSS6.6AI score0.02105EPSS

CVE•added 2007/02/16 12:28 a.m.•43 views

CVE-2007-0967

Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.1) allows remote attackers to cause a denial of service (device reboot) via malformed SNMP requests.

7.8CVSS6.6AI score0.0063EPSS

CVE•added 2007/10/18 9:17 p.m.•43 views

CVE-2007-5568

Cisco PIX and ASA appliances with 7.0 through 8.0 software, and Cisco Firewall Services Module (FWSM) 3.1(5) and earlier, allow remote attackers to cause a denial of service (device reload) via a crafted MGCP packet, aka CSCsi90468 (appliance) and CSCsi00694 (FWSM).

7.1CVSS6.6AI score0.02955EPSS

CVE•added 2007/02/16 12:28 a.m.•42 views

CVE-2007-0963

Unspecified vulnerability in Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.3), when set to log at the "debug" level, allows remote attackers to cause a denial of service (device reboot) by sending packets that are not of a particular protocol such as TCP or UDP, which triggers the reboot d...

7.8CVSS6.7AI score0.00573EPSS

CVE•added 2007/02/16 12:28 a.m.•41 views

CVE-2007-0965

Cisco FWSM 3.x before 3.1(3.2), when authentication is configured to use "aaa authentication match" or "aaa authentication include", allows remote attackers to cause a denial of service (device reboot) via a long HTTP request.

7.8CVSS6.9AI score0.01134EPSS

CVE•added 2007/12/20 2:46 a.m.•40 views

CVE-2007-5584

Unspecified vulnerability in Cisco Firewall Services Module (FWSM) 3.2(3) allows remote attackers to cause a denial of service (device reload) via crafted "data in the control-plane path with Layer 7 Application Inspections."

7.8CVSS6.4AI score0.01482EPSS

CVE•added 2007/10/18 9:17 p.m.•34 views

CVE-2007-5571

Cisco Firewall Services Module (FWSM) 3.1(6), and 3.2(2) and earlier, does not properly enforce edited ACLs, which might allow remote attackers to bypass intended restrictions on network traffic, aka CSCsj52536.

6.8CVSS6.8AI score0.00505EPSS