exploitDog

CVE-2008-3815

Опубликовано: 23 окт. 2008

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Unspecified vulnerability in Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 7.0 before 7.0(8)3, 7.1 before 7.1(2)78, 7.2 before 7.2(4)16, 8.0 before 8.0(4)6, and 8.1 before 8.1(1)13, when configured as a VPN using Microsoft Windows NT Domain authentication, allows remote attackers to bypass VPN authentication via unknown vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:h:cisco:asa_5500:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:pix:7.0:*:*:*:*:*:*:*

cpe:2.3:h:cisco:pix:7.1:*:*:*:*:*:*:*

cpe:2.3:h:cisco:pix:7.2:*:*:*:*:*:*:*

cpe:2.3:h:cisco:pix:8.0:*:*:*:*:*:*:*

cpe:2.3:h:cisco:pix:8.1:*:*:*:*:*:*:*

EPSS

Процентиль: 58%

0.00372

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-9qxp-4454-64h6

github

почти 4 года назад

Unspecified vulnerability in Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 7.0 before 7.0(8)3, 7.1 before 7.1(2)78, 7.2 before 7.2(4)16, 8.0 before 8.0(4)6, and 8.1 before 8.1(1)13, when configured as a VPN using Microsoft Windows NT Domain authentication, allows remote attackers to bypass VPN authentication via unknown vectors.

EPSS

Процентиль: 58%

0.00372

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-287