CyberSec.Space Logo
Back to CVE Browser

CVE-2009-4912

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0150%
EPSS Percentile18.20th
PublishedJun 29, 2010
Last ModifiedApr 29, 2026

Vulnerability Description

Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) complete an SSL handshake with an HTTPS client even if this client is unauthorized, which might allow remote attackers to bypass intended access restrictions via an HTTPS session, aka Bug ID CSCso10876.

Affected Platforms (CPE)

🔌
Cisco

Asa 5580

<= 8.1\(1\)

References & Advisories

🔗 http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html
🔗 http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html

Related Vulnerabilities

CVE-2009-491910.0

Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allows remote attacker...

CVE-2012-50108.1

ASA 5515-X Adaptive Security Appliance Adaptive Security Appliance (ASA) Software 9.4.x before 9.4.1 Interim, 9.2.x before 9.2.4 I...

CVE-2009-49217.8

Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allow remote attackers to cause a denial ...

CVE-2009-49117.8

Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allows remot...