CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
EPSS
Percentile
56.0%
A vulnerability in the virtualization layer of the Cisco ASA FirePOWER Services and Cisco ASA Context Aware (CX) Services could allow an unauthenticated, remote attacker to cause
the a reload of the affected system.
Cisco has released software updates that address this vulnerability. The resolution includes upgrading the Cisco ASA FirePOWER Services Software or the Cisco ASA CX Services Software and the Cisco ASA Software. Workarounds that mitigate this vulnerability are not available.
This advisory is available at the following link:
Note: Cisco ASA Software is affected by several other vulnerabilities described in the Cisco Security Advisory Multiple Vulnerabilities in Cisco ASA Software, cisco-sa-20150408-asa.
Cisco ASA customers should review cisco-sa-20150408-asa before
determining an upgrade release for Cisco ASA Software.
Cisco Security Advisory Multiple Vulnerabilities in Cisco ASA Software is available at the following link:
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | asa_cx_context-aware_security_software | any | cpe:2.3:a:cisco:asa_cx_context-aware_security_software:any:*:*:*:*:*:*:* |
cisco | asa_with_firepower_services | any | cpe:2.3:o:cisco:asa_with_firepower_services:any:*:*:*:*:*:*:* |