Lucene search

CiscoCVE-2015-0675

HistoryApr 13, 2015 - 1:59 a.m.

CVE-2015-0675

2015-04-1301:59:00

CWE-284

cisco

web.nvd.nist.gov

cve-2015-0675

cisco

asa

software

failover

ipsec

vulnerability

nvd

CVSS2

8.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.002

Percentile

61.0%

JSON

The failover ipsec implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1 before 9.1(6), 9.2 before 9.2(3.3), and 9.3 before 9.3(3) does not properly validate failover communication messages, which allows remote attackers to reconfigure an ASA device, and consequently obtain administrative control, by sending crafted UDP packets over the local network to the failover interface, aka Bug ID CSCur21069.

Affected configurations

Nvd

Node

ciscoadaptive_security_appliance_softwareMatch9.1.1

ciscoadaptive_security_appliance_softwareMatch9.1.1.4

ciscoadaptive_security_appliance_softwareMatch9.1.2

ciscoadaptive_security_appliance_softwareMatch9.1.2.8

ciscoadaptive_security_appliance_softwareMatch9.1.3

ciscoadaptive_security_appliance_softwareMatch9.1.3.2

ciscoadaptive_security_appliance_softwareMatch9.1.4

ciscoadaptive_security_appliance_softwareMatch9.1.4.5

ciscoadaptive_security_appliance_softwareMatch9.1.5

ciscoadaptive_security_appliance_softwareMatch9.1.5.10

ciscoadaptive_security_appliance_softwareMatch9.1.5.12

ciscoadaptive_security_appliance_softwareMatch9.1.5.15

ciscoadaptive_security_appliance_softwareMatch9.1.5.21

ciscoadaptive_security_appliance_softwareMatch9.2.1

ciscoadaptive_security_appliance_softwareMatch9.2.2

ciscoadaptive_security_appliance_softwareMatch9.2.2.4

ciscoadaptive_security_appliance_softwareMatch9.2.2.7

ciscoadaptive_security_appliance_softwareMatch9.2.2.8

ciscoadaptive_security_appliance_softwareMatch9.2.3

ciscoadaptive_security_appliance_softwareMatch9.3.1

ciscoadaptive_security_appliance_softwareMatch9.3.1.1

ciscoadaptive_security_appliance_softwareMatch9.3.2

ciscoadaptive_security_appliance_softwareMatch9.3.2.2

VendorProductVersionCPE
ciscoadaptive_security_appliance_software9.1.1cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.1:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.1.4cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.1.4:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.2cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.2:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.2.8cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.2.8:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.3cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.3:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.3.2cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.3.2:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.4cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.4:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.4.5cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.4.5:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.5cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.5:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.5.10cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.5.10:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	adaptive_security_appliance_software	9.1.1	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.1:::::::*
cisco	adaptive_security_appliance_software	9.1.1.4	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.1.4:::::::*
cisco	adaptive_security_appliance_software	9.1.2	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.2:::::::*
cisco	adaptive_security_appliance_software	9.1.2.8	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.2.8:::::::*
cisco	adaptive_security_appliance_software	9.1.3	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.3:::::::*
cisco	adaptive_security_appliance_software	9.1.3.2	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.3.2:::::::*
cisco	adaptive_security_appliance_software	9.1.4	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.4:::::::*
cisco	adaptive_security_appliance_software	9.1.4.5	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.4.5:::::::*
cisco	adaptive_security_appliance_software	9.1.5	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.5:::::::*
cisco	adaptive_security_appliance_software	9.1.5.10	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.5.10:::::::*