Описание
The HTTPS inspection engine in the Content Security and Control Security Services Module (CSC-SSM) 6.6 before 6.6.1164.0 for Cisco ASA 5500 devices allows remote attackers to cause a denial of service (memory consumption or device reload) via a flood of HTTPS packets, aka Bug ID CSCue76147.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:cisco:asa_5500_csc-ssm_firmware:6.6.1125.0:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asa_5500_csc-ssm:*:*:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.00743
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-119
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
The HTTPS inspection engine in the Content Security and Control Security Services Module (CSC-SSM) 6.6 before 6.6.1164.0 for Cisco ASA 5500 devices allows remote attackers to cause a denial of service (memory consumption or device reload) via a flood of HTTPS packets, aka Bug ID CSCue76147.
EPSS
Процентиль: 73%
0.00743
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-119