CVE-2011-2054

CWE-287 — Improper Authentication3 documents3 sources

Severity

7.5HIGH

EPSS

0.2%

top 61.94%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Cisco ASA Cisco ASA 5500 Firmware Cisco ASA 5510 Firmware +10 more

Timeline

PublishedFeb 19

Latest updateApr 22

Description

A vulnerability in the Cisco ASA that could allow a remote attacker to successfully authenticate using the Cisco AnyConnect VPN client if the Secondary Authentication type is LDAP and the password is left blank, providing the primary credentials are correct. The vulnerabilities is due to improper input validation of certain parameters passed to the affected software. An attacker must have the correct primary credentials in order to successfully exploit this vulnerability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages13 packages

▶CVEListV5cisco/cisco_asa8.4(1)

▶NVDcisco/asa_5500_firmware8.4\(1\)

▶NVDcisco/asa_5510_firmware8.4\(1\)

▶NVDcisco/asa_5520_firmware8.4\(1\)

▶NVDcisco/asa_5540_firmware8.4\(1\)

🔴Vulnerability Details

GHSA

GHSA-8w62-hmc9-cq72: A vulnerability in the Cisco ASA that could allow a remote attacker to successfully authenticate using the Cisco AnyConnect VPN client if the Secondar↗2022-04-22

▶

CVEList

Cisco ASA Secondary Authentication Bypass Vulnerability↗2020-02-19

▶