CVE-2008-2058 — Cisco Adaptive Security Appliance Software vulnerability

CWE-3994 documents4 sources

Severity

7.8HIGHNVD

EPSS

0.8%

top 25.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Adaptive Security Appliance Software Cisco PIX Security Appliance

Timeline

PublishedJun 4

Latest updateMay 1

Description

Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 7.2.x before 7.2(3)2 and 8.0.x before 8.0(2)17 allows remote attackers to cause a denial of service (device reload) via a port scan against TCP port 443 on the device.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

▶NVDcisco/adaptive_security_appliance_software7.2.2, 8.0+1

▶NVDcisco/pix_security_appliance7.2, 8.0+1

Patches

Patch: www.cisco.com ↗Patch: www.cisco.com ↗

🔴Vulnerability Details

GHSA

GHSA-fhcc-r3cj-8cwc: Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 7↗2022-05-01

▶

CVEList

CVE-2008-2058: Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 7↗2008-06-04

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in Cisco PIX and Cisco ASA↗2008-06-04

▶