CVE-2008-2059 — Cisco Adaptive Security Appliance Software vulnerability

CWE-264 CWE-3994 documents4 sources

Severity

7.8HIGHNVD

EPSS

0.2%

top 57.76%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Adaptive Security Appliance Software Cisco PIX Security Appliance

Timeline

PublishedJun 4

Latest updateMay 1

Description

Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 8.0.x before 8.0(3)9 allows remote attackers to bypass control-plane ACLs for the device via unknown vectors.

CVSS vector

AV:N/AC:L/C:C/I:N/A:NExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

▶NVDcisco/adaptive_security_appliance_software8.0

▶NVDcisco/pix_security_appliance8.0

🔴Vulnerability Details

GHSA

GHSA-xx7c-3hw3-xfp5: Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 8↗2022-05-01

▶

CVEList

CVE-2008-2059: Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 8↗2008-06-04

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in Cisco PIX and Cisco ASA↗2008-06-04

▶