CVE-2009-4921Improper Input Validation in Cisco ASA 5580

CWE-20Improper Input Validation3 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.8%
top 25.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco ASA 5580
Timeline
PublishedJun 29
Latest updateMay 2

Description

Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allow remote attackers to cause a denial of service (traceback) via malformed TCP packets, aka Bug ID CSCsm84110.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

NVDcisco/asa_55808.1\(1\)

Patches

Patch: www.cisco.comPatch: www.cisco.com

🔴Vulnerability Details

2
GHSA
GHSA-3qqh-3r54-2rh5: Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 82022-05-02
CVEList
CVE-2009-4921: Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 82010-06-29
CVE-2009-4921 — Improper Input Validation in Cisco | cvebase