Описание
Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when "inspect http" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic.
Ссылки
- Vendor Advisory
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
- PatchVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:h:cisco:firewall_services_module:2.3:*:*:*:*:*:*:*
cpe:2.3:h:cisco:firewall_services_module:3.1:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:h:cisco:asa_5500:7.0:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asa_5500:7.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:pix_firewall_software:7.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:pix_firewall_software:7.1:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.02938
Низкий
7.8 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when "inspect http" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic.
EPSS
Процентиль: 86%
0.02938
Низкий
7.8 High
CVSS2
Дефекты
NVD-CWE-Other