The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of ASA

Cisco ASA: directory traversal via HTTP Requests
An attacker can traverse directories via HTTP Requests of Cisco ASA, in order to read a file outside the service root path...
CERTFR-2020-AVI-461, cisco-sa-asaftd-ro-path-KJuQhB86, CSCvt03598, CVE-2020-3452, VIGILANCE-VUL-32899
Cisco ASA: denial of service via DHCP
An attacker can send malicious DHCP packets to Cisco ASA, in order to trigger a denial of service...
CERTFR-2020-AVI-274, cisco-sa-asaftd-dos-qk8cTGLz, CVE-2020-3306, VIGILANCE-VUL-32208
Cisco ASA: denial of service via BGP
An attacker can send malicious BGP packets to Cisco ASA, in order to trigger a denial of service...
CERTFR-2020-AVI-274, cisco-sa-asa-dos-P43GCE5j, CVE-2020-3305, VIGILANCE-VUL-32205
Cisco ASA: denial of service via IKEv1
An attacker can trigger a fatal error via IKEv1 of Cisco ASA, in order to trigger a denial of service...
CERTFR-2020-AVI-274, cisco-sa-asa-dos-BqYFRJt9, CVE-2020-3303, VIGILANCE-VUL-32204
Cisco ASA: denial of service via OSPF
An attacker can send malicious OSPF packets to Cisco ASA, in order to trigger a denial of service...
CERTFR-2020-AVI-274, cisco-sa-asa-ftd-ospf-dos-RhMQY8qx, CVE-2020-3298, VIGILANCE-VUL-32192
Cisco ASA: memory leak via OSPF
An attacker can create a memory leak via OSPF of Cisco ASA, in order to trigger a denial of service...
CERTFR-2020-AVI-274, cisco-sa-asa-ftd-ospf-memleak-DHpsgfnv, CVE-2020-3195, VIGILANCE-VUL-32190
Cisco ASA: information disclosure via HTTP GET
An attacker can bypass access restrictions to data via HTTP GET of Cisco ASA, in order to obtain sensitive information...
CERTFR-2020-AVI-274, cisco-sa-asaftd-info-disclose-9eJtycMB, CVE-2020-3259, VIGILANCE-VUL-32189
Cisco ASA: privilege escalation via Lua Interpreter
An attacker can bypass restrictions via Lua Interpreter of Cisco ASA, in order to escalate his privileges...
cisco-sa-20191112-asa-ftd-lua-rce, CSCvr85295, CSCvr96680, CVE-2019-15992, VIGILANCE-VUL-30833
Cisco ASA: Cross Site Scripting via WebVPN
An attacker can trigger a Cross Site Scripting via WebVPN of Cisco ASA, in order to run JavaScript code in the context of the web site...
CERTFR-2019-AVI-481, cisco-sa-20191002-asa-xss, CSCvp33341, CVE-2019-12695, VIGILANCE-VUL-30511
Cisco ASA: denial of service via SSL VPN
An attacker can trigger a fatal error via SSL VPN of Cisco ASA, in order to trigger a denial of service...
CERTFR-2019-AVI-481, cisco-sa-20191002-asa-ssl-vpn-dos, CSCux45179, CVE-2019-12677, VIGILANCE-VUL-30510
Our database contains other pages. You can request a free trial to read them.

Display information about ASA: