CyberSec.Space Logo
CVEブラウザに戻る

CVE-2009-4912

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0150%
EPSS Percentile18.20th
Published2010年6月29日
Last Modified2026年4月29日

Vulnerability Description

Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) complete an SSL handshake with an HTTPS client even if this client is unauthorized, which might allow remote attackers to bypass intended access restrictions via an HTTPS session, aka Bug ID CSCso10876.

Affected Platforms (CPE)

🔌
Cisco

Asa 5580

<= 8.1\(1\)

References & Advisories

🔗 http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html
🔗 http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html

関連する脆弱性情報

CVE-2009-491910.0

Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allows remote attacker...

CVE-2012-50108.1

ASA 5515-X Adaptive Security Appliance Adaptive Security Appliance (ASA) Software 9.4.x before 9.4.1 Interim, 9.2.x before 9.2.4 I...

CVE-2009-49217.8

Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allow remote attackers to cause a denial ...

CVE-2009-49117.8

Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allows remot...