CVE-2021-1422 — Reachable Assertion in Cisco Adaptive Security Appliance Software

CWE-617 — Reachable Assertion4 documents4 sources

Severity

7.7HIGHNVD

EPSS

0.4%

top 37.56%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Adaptive Security Appliance Software Cisco Adaptive Security Appliance Software Cisco Firepower Threat Defense

Timeline

PublishedJul 16

Latest updateMay 24

Description

A vulnerability in the software cryptography module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker or an unauthenticated attacker in a man-in-the-middle position to cause an unexpected reload of the device that results in a denial of service (DoS) condition. The vulnerability is due to a logic error in how the software cryptography module handles specific types of decryption errors. An attacker c…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 3.1 | Impact: 4.0

Affected Packages3 packages

▶NVDcisco/adaptive_security_appliance_software9.16.1

▶CVEListV5cisco/cisco_adaptive_security_appliance_softwaren/a

▶NVDcisco/firepower_threat_defense7.0.0.0

🔴Vulnerability Details

GHSA

GHSA-jcpc-3vwc-j47q: A vulnerability in the software cryptography module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Softw↗2022-05-24

▶

CVEList

Cisco Adaptive Security Appliance Software Release 9.16.1 and Cisco Firepower Threat Defense Software Release 7.0.0 IPsec Denial of Service Vulnerability↗2021-07-16

▶

📋Vendor Advisories

Cisco

Cisco Adaptive Security Appliance Software Release 9.16.1 and Cisco Firepower Threat Defense Software Release 7.0.0 IPsec Denial of Service Vulnerability↗2021-07-15

▶