CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
43.4%
The Clientless SSL VPN feature in Cisco Adaptive Security Appliance (ASA) Software 8.x before 8.2(5.44), 8.3.x before 8.3(2.39), 8.4.x before 8.4(5.7), 8.6.x before 8.6(1.12), 9.0.x before 9.0(2.6), and 9.1.x before 9.1(1.7) allows remote attackers to cause a denial of service (device reload) via crafted HTTPS requests, aka Bug ID CSCua22709.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | adaptive_security_appliance_software | 8.0 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 8.0(2) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0\(2\):*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 8.0(3) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0\(3\):*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 8.0(4) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0\(4\):*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 8.0(5) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0\(5\):*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 8.0(5.28) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0\(5.28\):*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 8.0(5.31) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0\(5.31\):*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 8.0.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0.2:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 8.0.3 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0.3:*:*:*:*:*:*:* |
cisco | adaptive_security_appliance_software | 8.0.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0.4:*:*:*:*:*:*:* |