CVE-2014-2126Cisco Adaptive Security Appliance Software vulnerability

CWE-2644 documents4 sources
Severity
8.5HIGHNVD
EPSS
0.5%
top 32.52%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Adaptive Security Appliance Software
Timeline
PublishedApr 10
Latest updateMay 17

Description

Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.47), 8.4 before 8.4(7.5), 8.7 before 8.7(1.11), 9.0 before 9.0(3.10), and 9.1 before 9.1(3.4) allows remote authenticated users to gain privileges by leveraging level-0 ASDM access, aka Bug ID CSCuj33496.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 6.8 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-fpxf-94c3-r48j: Cisco Adaptive Security Appliance (ASA) Software 82022-05-17
CVEList
CVE-2014-2126: Cisco Adaptive Security Appliance (ASA) Software 82014-04-10

📋Vendor Advisories

1
Cisco
Multiple Vulnerabilities in Cisco ASA Software2014-04-09
CVE-2014-2126 — Cisco vulnerability | cvebase