Lucene search
HistoryAug 06, 2012 - 5:55 p.m.
CVE-2012-2474
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
44.4%
Memory leak on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 through 8.4 allows remote authenticated users to cause a denial of service (memory consumption and blank response page) by using the clientless WebVPN feature, aka Bug ID CSCth34278.
Affected configurations
Node
cisco5500_series_adaptive_security_appliance
ORciscoadaptive_security_appliance_softwareMatch8.2
ORciscoadaptive_security_appliance_softwareMatch8.2\(1\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(2\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(3\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(3.9\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(4\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(4.1\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(4.4\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(5\)
ORciscoadaptive_security_appliance_softwareMatch8.2.1
ORciscoadaptive_security_appliance_softwareMatch8.2.2
ORciscoadaptive_security_appliance_softwareMatch8.2.2interim
ORciscoadaptive_security_appliance_softwareMatch8.2.3
ORciscoadaptive_security_appliance_softwareMatch8.3\(1\)
ORciscoadaptive_security_appliance_softwareMatch8.3\(2\)
ORciscoadaptive_security_appliance_softwareMatch8.3.1
ORciscoadaptive_security_appliance_softwareMatch8.3.1interim
ORciscoadaptive_security_appliance_softwareMatch8.3.2
ORciscoadaptive_security_appliance_softwareMatch8.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | 5500_series_adaptive_security_appliance | * | cpe:2.3:h:cisco:5500_series_adaptive_security_appliance:*:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(1) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(1\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(2) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(2\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(3) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(3.9) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3.9\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(4) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(4.1) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.1\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(4.4) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.4\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(5) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(5\):*:*:*:*:*:*:* |
Related
prion
prion
Memory corruption
2012-08-06 17:55:00
cvelist
cvelist
CVE-2012-2474
2012-08-06 17:00:00
nessus
nessus
Cisco ASA WebVPN Memory Leak DoS
2012-08-13 00:00:00
cve
cve
CVE-2012-2474
2012-08-06 17:55:01
cisco
cisco
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
44.4%
Related for NVD:CVE-2012-2474