BDU:2020-05504

BDU

High

Уязвимость модуля SSL/TLS микропрограммного обеспечения межсетевого экрана Cisco Adaptive Security Appliance вызвана ошибками при инициализ…

CVSS

8.6

High

EPSS

0.00

Published

2020-01-01

Updated

2020-01-01

Description

Уязвимость модуля SSL/TLS микропрограммного обеспечения межсетевого экрана Cisco Adaptive Security Appliance вызвана ошибками при инициализации указателя. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании

Tags · CWE

Pre-auth

Affected products

Cisco systems inc. Adaptive security applianceCisco systems inc. Adaptive security appliance

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Timeline

2020-01-01

Published

2020-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: N

None (N)

User Interaction

UI: N

None (N)

Scope

S: C

Changed (C)

Confidentiality Impact

C: N

None (N)

Integrity Impact

I: N

None (N)

Availability Impact

A: H

High (H)

Exploit indicators

EPSS

0.000 · p0

Known exploited (KEV)

Known exploits — Сканер-ВС

No Сканер-ВС checks registered for this vulnerability yet.

Affected products

Cisco

Adaptive Security Appliance

Product	Vendor	Status
adaptive security appliance	cisco systems inc.	Tracked
adaptive security appliance	cisco systems inc.	Tracked

Source databases

BDU

Related vulnerabilities

CVE-2020-27124

External references

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27124@https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ssl-dos-7uZWwSEy@https://www.cybersecurity-help.cz/vdb/SB2020102714