Описание
The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 9.3(.2) and earlier does not properly allocate memory blocks during HTTP packet handling, which allows remote attackers to cause a denial of service (memory consumption) via crafted packets, aka Bug ID CSCuq68888.
Ссылки
- Broken LinkVendor Advisory
- Vendor Advisory
- Broken LinkVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 9.3\(2\) (включая)
cpe:2.3:a:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00381
Низкий
5 Medium
CVSS2
Дефекты
CWE-400
Связанные уязвимости
github
больше 3 лет назад
The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 9.3(.2) and earlier does not properly allocate memory blocks during HTTP packet handling, which allows remote attackers to cause a denial of service (memory consumption) via crafted packets, aka Bug ID CSCuq68888.
EPSS
Процентиль: 59%
0.00381
Низкий
5 Medium
CVSS2
Дефекты
CWE-400