Improper input validation in Cisco Asa_5580

CVE-2009-4918

Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allow remote attackers to cause a denial of service (IKE process hang) via malformed NAT-T packets, aka Bug ID CSCsr74439.

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.008 (74.6th percentile) — read the EPSS interpretation.