CVE-2011-0393 — Cisco Adaptive Security Appliance Software vulnerability

CWE-3994 documents4 sources

Severity

7.8HIGHNVD

EPSS

1.1%

top 22.07%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Adaptive Security Appliance Software

Timeline

PublishedFeb 25

Latest updateMay 17

Description

Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 before 7.0(8.12), 7.1 and 7.2 before 7.2(5.2), 8.0 before 8.0(5.21), 8.1 before 8.1(2.49), 8.2 before 8.2(3.6), and 8.3 before 8.3(2.7) and Cisco PIX Security Appliances 500 series devices, when transparent firewall mode is configured but IPv6 is not configured, allow remote attackers to cause a denial of service (packet buffer exhaustion and device outage) via IPv6 traffic, aka Bug ID CSCtj04707.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

▶NVDcisco/adaptive_security_appliance_software8.3\(1\)+57

🔴Vulnerability Details

GHSA

GHSA-236r-q498-mcw6: Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7↗2022-05-17

▶

CVEList

CVE-2011-0393: Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7↗2011-02-25

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances↗2011-02-23

▶