CVE-2010-2815 — Cisco Adaptive Security Appliance vulnerability

CWE-3994 documents4 sources

Severity

7.8HIGHNVD

EPSS

1.1%

top 22.07%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Adaptive Security Appliance Cisco Adaptive Security Appliance Software

Timeline

PublishedAug 9

Latest updateMay 14

Description

Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 before 7.2(5), 8.0 before 8.0(5.15), 8.1 before 8.1(2.44), 8.2 before 8.2(2.17), and 8.3 before 8.3(1.6) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via a sequence of crafted TLS packets, aka Bug ID CSCtf55259.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

▶NVDcisco/adaptive_security_appliance_software14 versions+13

▶NVDcisco/adaptive_security_appliance13 versions+12

Patches

Patch: www.cisco.com ↗Patch: www.cisco.com ↗

🔴Vulnerability Details

GHSA

GHSA-v8q8-gjfw-rgpm: Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with so↗2022-05-14

▶

CVEList

CVE-2010-2815: Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with so↗2010-08-06

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances↗2010-08-04

▶