Описание
Cisco Adaptive Security Appliance (ASA) Software 8.4(.6) and earlier, when using an unsupported configuration with overlapping criteria for filtering and inspection, allows remote attackers to cause a denial of service (traffic loop and device crash) via a packet that triggers multiple matches, aka Bug ID CSCui45606.
Ссылки
- Broken LinkVendor Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Broken LinkVendor Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 8.4\(6\) (включая)
cpe:2.3:a:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01251
Низкий
5.4 Medium
CVSS2
Дефекты
CWE-400
Связанные уязвимости
github
больше 3 лет назад
Cisco Adaptive Security Appliance (ASA) Software 8.4(.6) and earlier, when using an unsupported configuration with overlapping criteria for filtering and inspection, allows remote attackers to cause a denial of service (traffic loop and device crash) via a packet that triggers multiple matches, aka Bug ID CSCui45606.
EPSS
Процентиль: 79%
0.01251
Низкий
5.4 Medium
CVSS2
Дефекты
CWE-400