CVE-2014-3394: The Smart Call Home (SCH) implementation in Cisco ASA Software 8.2 before 8.2(5.50), 8.4 before 8.4(7.15), 8.6 before 8.6(1.14), 8.7 before 8.7(1.13), 9.0…

medium5CVSS 3.1

AVNACLAuNCPINAN

The Smart Call Home (SCH) implementation in Cisco ASA Software 8.2 before 8.2(5.50), 8.4 before 8.4(7.15), 8.6 before 8.6(1.14), 8.7 before 8.7(1.13), 9.0 before 9.0(4.8), and 9.1 before 9.1(5.1) allows remote attackers to bypass certificate validation via an arbitrary VeriSign certificate, aka Bug ID CSCun10916.

Affected

71 ranges· showing 25

Vendor	Product	Version range	Fixed in
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—