CVE-2012-4629

CWE-3995 documents5 sources

Severity

7.8HIGH

EPSS

0.4%

top 37.67%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco ASA CX Context-aware Security Cisco Prime Security Manager

Timeline

PublishedSep 12

Latest updateMay 17

Description

The Cisco ASA-CX Context-Aware Security module before 9.0.2-103 for Adaptive Security Appliances (ASA) devices, and Prime Security Manager (aka PRSM) before 9.0.2-103, allows remote attackers to cause a denial of service (disk consumption and application hang) via unspecified IPv4 packets that trigger log entries, aka Bug ID CSCub70603.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

▶NVDcisco/prime_security_manager9.0

▶NVDcisco/asa_cx_context-aware_security9.0

🔴Vulnerability Details

GHSA

GHSA-8fvr-35hf-whpm: The Cisco ASA-CX Context-Aware Security module before 9↗2022-05-17

▶

CVEList

CVE-2012-4629: The Cisco ASA-CX Context-Aware Security module before 9↗2012-09-12

▶

📋Vendor Advisories

Cisco

Cisco ASA-CX and Cisco PRSM Log Retention Denial of Service Vulnerability↗2012-09-12

▶

💬Community

Bugzilla

CVE-2012-4459 qpid-cpp: crash due to qpid::framing::Buffer::checkAvailable() wraparound↗2012-09-27

▶