Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:62155
HistoryApr 14, 2014 - 12:00 a.m.

Cisco Adaptive Security Appliance SSL VPN远程权限提升漏洞

2014-04-1400:00:00
Root
www.seebug.org
19

EPSS

0.006

Percentile

77.8%

JSON

Bugtraq ID:66748
CVE ID:CVE-2014-2127

Cisco ASA 5500系列自适应安全设备是用于提供安全和VPN服务的模块化平台,可提供防火墙、IPS、anti-X和VPN服务。

Cisco Adaptive Security Appliance (ASA) Software 8.2(5.48)之前版本、8.3(2.40)之前版本、8.4(7.9)之前版本、8.6(1.13)之前版本、9.0(4.1)之前版本、9.1(4.3)之前版本在SSL VPN门户连接中的权限验证时,没有正确处理管理会话信息,这可使经过身份验证的远程用户通过建立无客户端SSL VPN会话并输入特制的URL,利用此漏洞获取权限。
0
Cisco Adaptive Security Appliance 9.x
Cisco Adaptive Security Appliance 8.x
目前厂商已经发布了升级补丁以修复漏洞,请下载使用:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-asa

Related

cvelist 1
nvd 1
prion 1
metasploit 1
cve 1
packetstorm 1
nmap 1
securityvulns 1
nessus 1
cisco 1
cvelist
cvelist
CVE-2014-2127
2014-04-10 01:00:00
nvd
nvd
CVE-2014-2127
2014-04-10 04:34:50
prion
prion
Information disclosure
2014-04-10 04:34:00
metasploit
metasploit
Cisco ASA SSL VPN Privilege Escalation Vulnerability
2014-07-08 01:00:43
cve
cve
CVE-2014-2127
2014-04-10 04:34:50
packetstorm
packetstorm
Cisco ASA SSL VPN Privilege Escalation
2024-09-01 00:00:00
nmap
nmap
http-vuln-cve2014-2127 NSE Script
2014-05-26 01:28:38
securityvulns
securityvulns
Cisco ASA multiple security vulnerabilities
2014-05-05 00:00:00
nessus
nessus
Cisco ASA Software Multiple Vulnerabilities (cisco-sa-20140409-asa)
2014-04-15 00:00:00
cisco
cisco
Multiple Vulnerabilities in Cisco ASA Software
2014-04-09 16:00:00

EPSS

0.006

Percentile

77.8%

JSON
Related for SSV:62155
cvelist1nvd1prion1metasploit1cve1packetstorm1nmap1securityvulns1nessus1cisco1