Lucene search

[email protected]NVD:CVE-2015-0760

HistoryJun 04, 2015 - 10:59 a.m.

CVE-2015-0760

2015-06-0410:59:00

CWE-20

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

0.001

Percentile

47.5%

JSON

The IKEv1 implementation in Cisco ASA Software 7.x, 8.0.x, 8.1.x, and 8.2.x before 8.2.2.13 allows remote authenticated users to bypass XAUTH authentication via crafted IKEv1 packets, aka Bug ID CSCus47259.

Affected configurations

Nvd

Node

ciscoadaptive_security_appliance_softwareRange7.0–8.2.2.13

VendorProductVersionCPE
ciscoadaptive_security_appliance_software*cpe:2.3:a:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	adaptive_security_appliance_software	*	cpe:2.3:a:cisco:adaptive_security_appliance_software::::::::

References

tools.cisco.com/security/center/viewAlert.x?alertId=39157

www.securitytracker.com/id/1032473

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

0.001

Percentile

47.5%

JSON

Related for NVD:CVE-2015-0760

cisco1 cve1 openvas1 cvelist1 prion1