Cisco Adaptive Security Appliance Software vulnerabilities

164 known vulnerabilities affecting cisco/cisco_adaptive_security_appliance_software.

Total CVEs
164
CISA KEV
7
actively exploited
Public exploits
3
Exploited in wild
8
Severity breakdown
CRITICAL5HIGH95MEDIUM63LOW1

Vulnerabilities

Page 9 of 9
CVE-2018-15399MEDIUMCVSS 6.8vn/a2018-10-05
CVE-2018-15399 [MEDIUM] CWE-400 CVE-2018-15399: A vulnerability in the TCP syslog module of Cisco Adaptive Security Appliance (ASA) Software and Cis A vulnerability in the TCP syslog module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to exhaust the 1550-byte buffers on an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to a missing boundary check i
cvelistv5nvd
CVE-2018-15398MEDIUMCVSS 4.0vn/a2018-10-05
CVE-2018-15398 [MEDIUM] CWE-284 CVE-2018-15398: A vulnerability in the per-user-override feature of Cisco Adaptive Security Appliance (ASA) Software A vulnerability in the per-user-override feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass an access control list (ACL) that is configured for an interface of an affected device. The vulnerability is due to errors that could occur wh
cvelistv5nvd
CVE-2017-12246HIGHCVSS 8.6vCisco Adaptive Security Appliance Software2017-10-05
CVE-2017-12246 [HIGH] CWE-399 CVE-2017-12246: A vulnerability in the implementation of the direct authentication feature in Cisco Adaptive Security Appliance (ASA) Software could allow an unauthen A vulnerability in the implementation of the direct authentication feature in Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause an affected device to unexpectedly reload, resulting in a denial of service (DoS) condition. The vulnerability is due t
cvelistv5
CVE-2017-12265MEDIUMCVSS 6.1vCisco Adaptive Security Appliance Software2017-10-05
CVE-2017-12265 [MEDIUM] CWE-79 CVE-2017-12265: A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attac A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device, aka HREF XSS. The vulnera
cvelistv5
← Previous9 / 9
Cisco Adaptive Security Appliance Software vulnerabilities | cvebase