Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveCiscoCVE-2013-1195
HistoryOct 03, 2022 - 4:14 p.m.

CVE-2013-1195

2022-10-0316:14:47
CWE-264
cisco
web.nvd.nist.gov
34
cisco
asa
fwsm
cve-2013-1195
security vulnerability
time-based acl
network traffic

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7

Confidence

Low

EPSS

0.002

Percentile

52.2%

JSON

The time-based ACL implementation on Cisco Adaptive Security Appliances (ASA) devices, and in Cisco Firewall Services Module (FWSM), does not properly handle periodic statements for the time-range command, which allows remote attackers to bypass intended access restrictions by sending network traffic during denied time periods, aka Bug IDs CSCuf79091 and CSCug45850.

Affected configurations

Nvd
Node
ciscofirewall_services_module
OR
ciscoadaptive_security_appliance_softwareMatch-
VendorProductVersionCPE
ciscoadaptive_security_appliance_software-cpe:/o:cisco:adaptive_security_appliance_software:-:::
ciscofirewall_services_modulecpe:/h:cisco:firewall_services_module::::

Related

cvelist 1
prion 1
cisco 1
nvd 1
cvelist
cvelist
CVE-2013-1195
2022-10-03 16:14:47
prion
prion
Command injection
2013-04-24 10:28:00
cisco
cisco
Cisco Adaptive Security Appliance Software and Firewall Services Module Software Time-Range Object Access List Bypass Vulnerability
2013-04-22 19:37:07
nvd
nvd
CVE-2013-1195
2013-04-24 10:28:37

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7

Confidence

Low

EPSS

0.002

Percentile

52.2%

JSON
Related for CVE-2013-1195
cvelist1prion1cisco1nvd1