CVE-2019-1944
published 2019-08-07CVE-2019-1944: Multiple vulnerabilities in the smart tunnel functionality of Cisco Adaptive Security Appliance (ASA) could allow an authenticated, local attacker to elevate…
high7.3CVSS 3.1
AVLACLPRLUIRSUCHIHAH
Multiple vulnerabilities in the smart tunnel functionality of Cisco Adaptive Security Appliance (ASA) could allow an authenticated, local attacker to elevate privileges to the root user or load a malicious library file while the tunnel is being established. For more information about these vulnerabilities, see the Details section of this security advisory.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | adaptive_security_appliance_smart_tunnel | — | — |
| cisco | adaptive_security_appliance_software | < 9.4.4.37 | 9.4.4.37 |
| cisco | cisco_adaptive_security_appliance_software | >= unspecified < 9.8.4.7 | 9.8.4.7 |