Cisco Adaptive Security Appliance — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Adaptive Security Appliance, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (63)
CVE-2020-3528 — CVSS 8.6 (high): A vulnerability in the OSPF Version 2 (OSPFv2) implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower…
CVE-2021-40118 — CVSS 8.6 (high): A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2021-40117 — CVSS 8.6 (high): A vulnerability in SSL/TLS message handler for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2021-34793 — CVSS 8.6 (high): A vulnerability in the TCP Normalizer of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software…
CVE-2021-1573 — CVSS 8.6 (high): A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2020-3572 — CVSS 8.6 (high): A vulnerability in the SSL/TLS session handler of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2020-3304 — CVSS 8.6 (high): A vulnerability in the web interface of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could…
CVE-2020-3529 — CVSS 8.6 (high): A vulnerability in the SSL VPN negotiation process for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense…
CVE-2020-3436 — CVSS 8.6 (high): A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) Software…
CVE-2010-2817 — CVSS 7.8 (high): Unspecified vulnerability in the IKE implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0…
CVE-2011-0394 — CVSS 7.8 (high): Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 before 7.0(8.11), 7.1 and 7.2 before 7.2(5.1), 8.0 before…
CVE-2011-0395 — CVSS 7.8 (high): Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.20), 8.1 before 8.1(2.48), 8.2 before 8.2(3)…
CVE-2011-0396 — CVSS 7.8 (high): Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.23), 8.1 before 8.1(2.49), 8.2 before 8.2(4.1)…
CVE-2008-2056 — CVSS 7.8 (high): Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 8.0.x before 8.0(3)9 and 8.1.x before 8.1(1)1 allows remote…
CVE-2013-1152 — CVSS 7.8 (high): Cisco Adaptive Security Appliances (ASA) devices with software 9.0 before 9.0(1.2) allow remote attackers to cause a denial of service…
CVE-2013-1150 — CVSS 7.8 (high): The authentication-proxy implementation on Cisco Adaptive Security Appliances (ASA) devices with software 7.x before 7.2(5.10), 8.0 before…
CVE-2013-3382 — CVSS 7.8 (high): The Next-Generation Firewall (aka NGFW, formerly CX Context-Aware Security) module 9.x before 9.1.1.9 and 9.1.2.x before 9.1.2.12 for Cisco…
CVE-2010-1578 — CVSS 7.8 (high): Unspecified vulnerability in the SunRPC inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software…
CVE-2010-1579 — CVSS 7.8 (high): Unspecified vulnerability in the SunRPC inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software…
CVE-2010-1580 — CVSS 7.8 (high): Unspecified vulnerability in the SunRPC inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software…
CVE-2010-1581 — CVSS 7.8 (high): Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series…
CVE-2010-2814 — CVSS 7.8 (high): Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series…
CVE-2010-2815 — CVSS 7.8 (high): Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series…
CVE-2010-2816 — CVSS 7.8 (high): Unspecified vulnerability in the SIP inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0…
CVE-2019-12678 — CVSS 7.5 (high): A vulnerability in the Session Initiation Protocol (SIP) inspection module of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2019-12698 — CVSS 7.5 (high): A vulnerability in the WebVPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software…
CVE-2023-20107 — CVSS 7.5 (high): A vulnerability in the deterministic random bit generator (DRBG), also known as pseudorandom number generator (PRNG), in Cisco Adaptive…
CVE-2020-3554 — CVSS 7.5 (high): A vulnerability in the TCP packet processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2020-3306 — CVSS 7.5 (high): A vulnerability in the DHCP module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software…
CVE-2020-3305 — CVSS 7.5 (high): A vulnerability in the implementation of the Border Gateway Protocol (BGP) module in Cisco Adaptive Security Appliance (ASA) Software and…
CVE-2020-3303 — CVSS 7.5 (high): A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2019-12673 — CVSS 7.5 (high): A vulnerability in the FTP inspection engine of Cisco Adaptive Security (ASA) Software and Cisco Firepower Threat Defense (FTD) Software…
CVE-2019-12676 — CVSS 7.4 (high): A vulnerability in the Open Shortest Path First (OSPF) implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2019-15992 — CVSS 7.2 (high): A vulnerability in the implementation of the Lua interpreter integrated in Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2013-6696 — CVSS 7.1 (high): Cisco Adaptive Security Appliance (ASA) Software does not properly handle errors during the processing of DNS responses, which allows…
CVE-2007-5569 — CVSS 7.1 (high): Cisco PIX and ASA appliances with 7.1 and 7.2 software, when configured for TLS sessions to the device, allow remote attackers to cause a…
CVE-2009-2631 — CVSS 6.8 (medium): Multiple clientless SSL VPN products that run in web browsers, including Stonesoft StoneGate; Cisco ASA; SonicWALL E-Class SSL VPN and…
CVE-2006-4312 — CVSS 6.8 (medium): Cisco PIX 500 Series Security Appliances and ASA 5500 Series Adaptive Security Appliances, when running 7.0(x) up to 7.0(5) and 7.1(x) up…
CVE-2020-3555 — CVSS 6.8 (medium): A vulnerability in the SIP inspection process of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2012-6395 — CVSS 6.3 (medium): Cisco Adaptive Security Appliances (ASA) devices with firmware 8.4 do not properly validate unspecified input related to UNC share…
CVE-2012-5717 — CVSS 6.3 (medium): Cisco Adaptive Security Appliances (ASA) devices with firmware 8.x through 8.4(1) do not properly manage SSH sessions, which allows remote…
CVE-2019-12695 — CVSS 6.1 (medium): A vulnerability in the Clientless SSL VPN (WebVPN) portal of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense…
CVE-2020-3599 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated…
CVE-2017-12265 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated…
CVE-2009-1203 — CVSS 6.0 (medium): WebVPN on the Cisco Adaptive Security Appliances (ASA) device with software 8.0(4), 8.1.2, and 8.2.1 does not properly distinguish its own…
CVE-2022-20795 — CVSS 5.8 (medium): A vulnerability in the implementation of the Datagram TLS (DTLS) protocol in Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2012-5415 — CVSS 5.4 (medium): Race condition on Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to cause a denial of service (CPU consumption or…
CVE-2020-3564 — CVSS 5.3 (medium): A vulnerability in the FTP inspection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2021-34787 — CVSS 5.3 (medium): A vulnerability in the identity-based firewall (IDFW) rule processing feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2013-1138 — CVSS 5.0 (medium): The NAT process on Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to cause a denial of service (connections-table…
CVE-2013-1194 — CVSS 5.0 (medium): The ISAKMP implementation on Cisco Adaptive Security Appliances (ASA) devices generates different responses for IKE aggressive-mode…
CVE-2013-1199 — CVSS 4.9 (medium): Race condition in the CIFS implementation in the rewriter module in the Clientless SSL VPN component on Cisco Adaptive Security Appliances…
CVE-2019-12693 — CVSS 4.9 (medium): A vulnerability in the Secure Copy (SCP) feature of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote…
CVE-2021-34790 — CVSS 4.7 (medium): Multiple vulnerabilities in the Application Level Gateway (ALG) for the Network Address Translation (NAT) feature of Cisco Adaptive…
CVE-2020-3561 — CVSS 4.7 (medium): A vulnerability in the Clientless SSL VPN (WebVPN) of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense…
CVE-2021-34791 — CVSS 4.7 (medium): Multiple vulnerabilities in the Application Level Gateway (ALG) for the Network Address Translation (NAT) feature of Cisco Adaptive…
CVE-2009-1201 — CVSS 4.3 (medium): Eval injection vulnerability in the csco_wrap_js function in /+CSCOL+/cte.js in WebVPN on the Cisco Adaptive Security Appliances (ASA)…
CVE-2013-3414 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the WebVPN portal login page on Cisco Adaptive Security Appliances (ASA) devices allows remote…
CVE-2009-1220 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in +webvpn+/index.html in WebVPN on the Cisco Adaptive Security Appliances (ASA) 5520 with…
CVE-2013-3463 — CVSS 4.3 (medium): The protocol-inspection feature on Cisco Adaptive Security Appliances (ASA) devices does not properly implement the idle timeout, which…
CVE-2009-1202 — CVSS 4.3 (medium): WebVPN on the Cisco Adaptive Security Appliances (ASA) device with software 8.0(4), 8.1.2, and 8.2.1 allows remote attackers to bypass…
CVE-2014-0653 — CVSS 4.3 (medium): The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to trigger…
CVE-2014-0655 — CVSS 4.3 (medium): The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to change the…