Cisco Firewall Services Module Software vulnerabilities

19 known vulnerabilities affecting cisco/firewall_services_module_software.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

HIGH18MEDIUM1

Vulnerabilities

Page 1 of 1

CVE-2014-0710HIGHCVSS 7.1v3.1v3.1\(2\)+77 more2014-02-22

CVE-2014-0710 [HIGH] CWE-362 CVE-2014-0710: Race condition in the cut-through proxy feature in Cisco Firewall Services Module (FWSM) Software 3. Race condition in the cut-through proxy feature in Cisco Firewall Services Module (FWSM) Software 3.x before 3.2(28) and 4.x before 4.1(15) allows remote attackers to cause a denial of service (device reload) via certain matching traffic, aka Bug ID CSCuj16824.

nvd

CVE-2013-5508HIGHCVSS 7.1v4.1\(1\)v4.1\(2\)+59 more2013-10-13

CVE-2013-5508 [HIGH] CWE-20 CVE-2013-5508: The SQL*Net inspection engine in Cisco Adaptive Security Appliance (ASA) Software 7.x before 7.2(5.1 The SQL*Net inspection engine in Cisco Adaptive Security Appliance (ASA) Software 7.x before 7.2(5.12), 8.x before 8.2(5.44), 8.3.x before 8.3(2.39), 8.4.x before 8.4(6), 8.5.x before 8.5(1.18), 8.6.x before 8.6(1.12), 8.7.x before 8.7(1.6), 9.0.x before 9.0(2.10), and 9.1.x before 9.1(2) and Firewall Services Module (FWSM) 3.1.x and 3.2.x before 3.2(27)

nvd

CVE-2013-5506MEDIUMCVSS 6.6v3.1v3.1\(2\)+70 more2013-10-13

CVE-2013-5506 [MEDIUM] CWE-264 CVE-2013-5506: The authorization functionality in Cisco Firewall Services Module (FWSM) 3.1.x and 3.2.x before 3.2( The authorization functionality in Cisco Firewall Services Module (FWSM) 3.1.x and 3.2.x before 3.2(25) and 4.x before 4.1(13), when multiple-context mode is enabled, allows local users to read or modify any context's configuration via unspecified commands, aka Bug ID CSCue46080.

nvd

CVE-2013-1149HIGHCVSS 7.8v3.1v3.2+32 more2013-04-11

CVE-2013-1149 [HIGH] CVE-2013-1149: Cisco Adaptive Security Appliances (ASA) devices with software 7.x before 7.2(5.10), 8.0 before 8.0( Cisco Adaptive Security Appliances (ASA) devices with software 7.x before 7.2(5.10), 8.0 before 8.0(5.28), 8.1 and 8.2 before 8.2(5.35), 8.3 before 8.3(2.34), 8.4 before 8.4(4.11), 8.6 before 8.6(1.10), and 8.7 before 8.7(1.3), and Cisco Firewall Services Module (FWSM) software 3.1 and 3.2 before 3.2(24.1) and 4.0 and 4.1 before 4.1(11.1), allow remote attacker

nvd

CVE-2013-1155HIGHCVSS 7.8v3.1v3.2+41 more2013-04-11

CVE-2013-1155 [HIGH] CWE-287 CVE-2013-1155: The auth-proxy functionality in Cisco Firewall Services Module (FWSM) software 3.1 and 3.2 before 3. The auth-proxy functionality in Cisco Firewall Services Module (FWSM) software 3.1 and 3.2 before 3.2(20.1), 4.0 before 4.0(15.2), and 4.1 before 4.1(5.1) allows remote attackers to cause a denial of service (device reload) via a crafted URL, aka Bug ID CSCtg02624.

nvd

CVE-2012-0356HIGHCVSS 7.8v3.1v3.1\(2\)+65 more2012-03-15

CVE-2012-0356 [HIGH] CWE-20 CVE-2012-0356: Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 7.0 through 7.2 before 7.2(5.7), 8.0 before 8.0(5.27), 8.1 before 8.1(2.53), 8.2 before 8.2(5.8), 8.3 before 8.3(2.25), 8.4 before 8.4(2.5), and 8.5 before 8.5(1.2) and the Firewall Services Module (FWSM)

nvd

CVE-2011-3301HIGHCVSS 7.8v3.1v3.1\(2\)+62 more2011-10-06

CVE-2011-3301 [HIGH] CWE-399 CVE-2011-3301: Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco C Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.0(8.13), 7.1 and 7.2 before 7.2(5.4), 8.0 before 8.0(5.25), 8.1 and 8.2 before 8.2(5.11), 8.3 before 8.3(2.23), 8.4 before 8.4(2.6), and 8.5 before 8.5(1.1) and Cisco Firewall Services Module (aka FW

nvd

CVE-2011-3297HIGHCVSS 7.8v3.1v3.1\(2\)+62 more2011-10-06

CVE-2011-3297 [HIGH] CWE-287 CVE-2011-3297: Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16) Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7), when certain authentication configurations are used, allows remote attackers to cause a denial of service (module crash) by making many authentication requests for network access, aka Bug ID CSCtn15697.

nvd

CVE-2011-3298HIGHCVSS 7.9v3.1v3.1\(2\)+62 more2011-10-06

CVE-2011-3298 [HIGH] CWE-287 CVE-2011-3298: Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco C Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.0(8.13), 7.1 and 7.2 before 7.2(5.3), 8.0 before 8.0(5.24), 8.1 before 8.1(2.50), 8.2 before 8.2(5), 8.3 before 8.3(2.18), 8.4 before 8.4(1.10), and 8.5 before 8.5(1.1) and Cisco Firewall Services Mo

nvd

CVE-2011-3303HIGHCVSS 7.8v3.1v3.1\(2\)+62 more2011-10-06

CVE-2011-3303 [HIGH] CWE-399 CVE-2011-3303: Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco C Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.0(8.13), 7.1 and 7.2 before 7.2(5.4), 8.0 before 8.0(5.25), 8.1 before 8.1(2.50), 8.2 before 8.2(5.6), 8.3 before 8.3(2.23), 8.4 before 8.4(2.7), and 8.5 before 8.5(1.1) and Cisco Firewall Services M

nvd

CVE-2011-3299HIGHCVSS 7.8v3.1v3.1\(2\)+62 more2011-10-06

CVE-2011-3299 [HIGH] CWE-399 CVE-2011-3299: Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco C Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.0(8.13), 7.1 and 7.2 before 7.2(5.4), 8.0 before 8.0(5.25), 8.1 and 8.2 before 8.2(5.11), 8.3 before 8.3(2.23), 8.4 before 8.4(2.6), and 8.5 before 8.5(1.1) and Cisco Firewall Services Module (aka FW

nvd

CVE-2011-3300HIGHCVSS 7.8v3.1v3.1\(2\)+62 more2011-10-06

CVE-2011-3300 [HIGH] CWE-399 CVE-2011-3300: Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco C Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.0(8.13), 7.1 and 7.2 before 7.2(5.4), 8.0 before 8.0(5.25), 8.1 and 8.2 before 8.2(5.11), 8.3 before 8.3(2.23), 8.4 before 8.4(2.6), and 8.5 before 8.5(1.1) and Cisco Firewall Services Module (aka FW

nvd

CVE-2011-3302HIGHCVSS 7.8v3.1v3.1\(2\)+62 more2011-10-06

CVE-2011-3302 [HIGH] CWE-399 CVE-2011-3302: Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco C Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.0(8.13), 7.1 and 7.2 before 7.2(5.4), 8.0 before 8.0(5.25), 8.1 and 8.2 before 8.2(5.11), 8.3 before 8.3(2.23), 8.4 before 8.4(2.6), and 8.5 before 8.5(1.1) and Cisco Firewall Services Module (aka FW

nvd

CVE-2011-3296HIGHCVSS 7.8v3.1v3.1\(2\)+62 more2011-10-06

CVE-2011-3296 [HIGH] CWE-399 CVE-2011-3296: Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16) Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7), when IPv6 is used, allows remote attackers to cause a denial of service (memory corruption and module crash or hang) via vectors that trigger syslog message 302015, aka Bug ID CSCti83875.

nvd

CVE-2011-0394HIGHCVSS 7.8v3.1v3.1\(5\)+27 more2011-02-25

CVE-2011-0394 [HIGH] CWE-399 CVE-2011-0394: Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 before 7.0(8.11), 7.1 Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 before 7.0(8.11), 7.1 and 7.2 before 7.2(5.1), 8.0 before 8.0(5.19), 8.1 before 8.1(2.47), 8.2 before 8.2(2.19), and 8.3 before 8.3(1.8); Cisco PIX Security Appliances 500 series devices; and Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(20), 3.2 before 3.2(20), 4.

nvd

CVE-2010-2821HIGHCVSS 7.1v3.2v3.2\(1\)+13 more2010-08-09

CVE-2010-2821 [HIGH] CVE-2010-2821: Unspecified vulnerability on the Cisco Firewall Services Module (FWSM) with software 3.2 before 3.2( Unspecified vulnerability on the Cisco Firewall Services Module (FWSM) with software 3.2 before 3.2(17.2), 4.0 before 4.0(11.1), and 4.1 before 4.1(1.2) for Catalyst 6500 series switches and 7600 series routers, when multi-mode is enabled, allows remote attackers to cause a denial of service (device reload) via crafted (1) Telnet, (2) SSH, or (3) ASDM traffic o

nvd

CVE-2010-2820HIGHCVSS 7.8v3.1v3.1\(5\)+18 more2010-08-09

CVE-2010-2820 [HIGH] CVE-2010-2820: Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module (FW Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module (FWSM) with software 3.1 before 3.1(17.2), 3.2 before 3.2(16.1), 4.0 before 4.0(10.1), and 4.1 before 4.1(1.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via crafted SunRPC messages,

nvd

CVE-2010-2818HIGHCVSS 7.8v3.1v3.1\(5\)+18 more2010-08-09

CVE-2010-2818 [HIGH] CVE-2010-2818: Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module (FW Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module (FWSM) with software 3.1 before 3.1(17.2), 3.2 before 3.2(16.1), 4.0 before 4.0(10.1), and 4.1 before 4.1(1.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via crafted SunRPC messages,

nvd

CVE-2010-2819HIGHCVSS 7.8v3.1v3.1\(5\)+18 more2010-08-09

CVE-2010-2819 [HIGH] CWE-20 CVE-2010-2819: Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module (FW Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module (FWSM) with software 3.1 before 3.1(17.2), 3.2 before 3.2(16.1), 4.0 before 4.0(10.1), and 4.1 before 4.1(1.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via crafted SunRPC me

nvd