Improper input validation in Cisco Adaptive_security_appliance
CVE-2012-6395
Cisco Adaptive Security Appliances (ASA) devices with firmware 8.4 do not properly validate unspecified input related to UNC share pathnames, which allows remote authenticated users to cause a denial of service (device crash) via unknown v…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.010 (77.2th percentile) — read the EPSS interpretation.
Affected products
- Cisco Adaptive_security_appliance
- Cisco Adaptive_security_appliance_software — versions 8.4
- Cisco Asa_1000v_cloud_firewall
- Cisco Asa_5500
- N/a — versions n/a
Weakness classification (CWE)
References
- 51955 (x_refsource_SECUNIA, third-party-advisory)
- 1028009 (vdb-entry, x_refsource_SECTRACK)
- 20130112 Cisco Adaptive Security Appliance CIFS UNC Input Validation Issue (x_refsource_CISCO, vendor-advisory, Vendor Advisory)