Home/Product/cisco adaptive security appliance software
Product

cisco adaptive security appliance software

348 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-20024
all versions
A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an authentica
6.8MEDIUM
 CVE-2026-20023
all versions
A vulnerability in the OSPF protocol of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall
6.1MEDIUM
 CVE-2026-20022
all versions
A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenti
6.1MEDIUM
 CVE-2026-20021
>= 9.12.1 and <= 9.12.4.67
A vulnerability in the OSPF protocol of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall
4.3MEDIUM
 CVE-2026-20020
all versions
A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenti
6.8MEDIUM
 CVE-2026-20106
>= 9.12.1 and < 9.16.4.85
A vulnerability in the Remote Access SSL VPN, HTTP management and MUS functionality, of Cisco Secure Firewall Adaptive Security Ap
5.3MEDIUM
 CVE-2026-20105
>= 9.12.1 and < 9.16.4.85
A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and
7.7HIGH
 CVE-2026-20103
>= 9.12.1 and < 9.16.4.85
A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and
8.6HIGH
 CVE-2026-20102
>= 9.16.1 and < 9.16.4.89
A vulnerability in the SAML 2.0 single sign-on (SSO) feature of Cisco Secure Firewall ASA Software and Cisco Secure Firewall Threa
6.1MEDIUM
 CVE-2026-20101
>= 9.12.1 and < 9.16.4.85
A vulnerability in the SAML 2.0 single sign-on (SSO) feature of Cisco Secure Firewall ASA Software and Secure FTD Software could a
8.6HIGH
 CVE-2026-20100
all versions
A vulnerability in the LUA interperter of the Remote Access SSL VPN feature of Cisco Secure Firewall Adaptive Security Appliance (
7.7HIGH
 CVE-2026-20082
>= 9.20.4.14 and < 9.20.4.19
A vulnerability in the handling of the embryonic connection limits in Cisco Secure Firewall Adaptive Security Appliance (ASA) Soft
8.6HIGH
 CVE-2026-20073
all versions
A vulnerability in Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD)
5.8MEDIUM
 CVE-2026-20070
all versions
A vulnerability in the VPN web services component of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Se
6.1MEDIUM
 CVE-2026-20049
>= 9.18.1 and < 9.18.4.66
A vulnerability in the processing of Galois/Counter Mode (GCM)-encrypted Internet Key Exchange version 2 (IKEv2) IPsec traffic of
7.7HIGH
 CVE-2026-20039
>= 9.12.1 and < 9.16.4.84
A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewal
8.6HIGH
 CVE-2026-20015
>= 9.18.1 and < 9.18.4.71
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenti
5.8MEDIUM
 CVE-2026-20014
>= 9.12.1 and < 9.16.4.85
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an authentica
7.7HIGH
 CVE-2026-20013
>= 9.18.1 and < 9.18.4.66
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenti
5.8MEDIUM
 CVE-2026-20009
>= 9.17.1 and < 9.18.4.71
A vulnerability in the implementation of the proprietary SSH stack with SSH key-based authentication in Cisco Secure Firewall Adap
5.3MEDIUM
 CVE-2026-20008
>= 9.12.1 and < 9.16.4.85
A vulnerability in a small subset of CLI commands that are used on Cisco Secure Firewall Adaptive Security Appliance (ASA) Softwar
6.0MEDIUM
 CVE-2025-20363
>= 9.12 and < 9.12.4.72
A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software, Cisco Secure Firewall Thr
9.0CRITICAL
 CVE-2025-20362
>= 9.12 and < 9.12.4.72
Update: On November 5, 2025, Cisco became aware of a new attack variant against devices running Cisco Secure ASA Software or Cisco
6.5MEDIUM
 CVE-2025-20333
>= 9.12 and < 9.12.4.72
A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewal
9.9CRITICAL
 CVE-2025-20127
all versions
A vulnerability in the TLS 1.3 implementation for a specific cipher for Cisco Secure Firewall Adaptive Security Appliance (ASA) So
7.7HIGH
 CVE-2025-20182
all versions
A vulnerability in the Internet Key Exchange version 2 (IKEv2) protocol processing of Cisco Adaptive Security Appliance (ASA) Soft
8.6HIGH
 CVE-2020-27124
all versions
A vulnerability in the SSL/TLS handler of Cisco&nbsp;Adaptive Security Appliance (ASA) Software could allow an unauthenticated, re
8.6HIGH
 CVE-2024-20526
all versions
A vulnerability in the SSH server of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attac
5.3MEDIUM
 CVE-2024-20495
all versions
A vulnerability in the Remote Access VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat De
8.6HIGH
 CVE-2024-20494
all versions
A vulnerability in the TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Thre
8.6HIGH
 CVE-2024-20493
all versions
A vulnerability in the login authentication functionality of the Remote Access SSL VPN feature of Cisco Adaptive Security Applianc
5.3MEDIUM
 CVE-2024-20485
all versions
A vulnerability in the VPN web server of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)
6.0MEDIUM
 CVE-2024-20481
all versions
A vulnerability in the Remote Access VPN (RAVPN) service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower T
5.8MEDIUM
 CVE-2024-20426
all versions
A vulnerability in the Internet Key Exchange version 2 (IKEv2) protocol for VPN termination of Cisco Adaptive Security Appliance (
8.6HIGH
 CVE-2024-20408
all versions
A vulnerability in the Dynamic Access Policies (DAP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepow
7.7HIGH
 CVE-2024-20402
all versions
A vulnerability in the SSL VPN feature for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FT
8.6HIGH
 CVE-2024-20384
all versions
A vulnerability in the Network Service Group (NSG) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower
5.8MEDIUM
 CVE-2024-20382
all versions
A vulnerability in the VPN web client services feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Thr
6.1MEDIUM
 CVE-2024-20341
all versions
A vulnerability in the VPN web client services feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Thr
6.1MEDIUM
 CVE-2024-20331
all versions
A vulnerability in the session authentication functionality of the Remote Access SSL VPN feature of Cisco Adaptive Security Applia
6.8MEDIUM
 CVE-2024-20329
all versions
A vulnerability in the SSH subsystem of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote atta
9.9CRITICAL
 CVE-2024-20299
all versions
A vulnerability in the AnyConnect firewall for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense
5.8MEDIUM
 CVE-2024-20297
all versions
A vulnerability in the AnyConnect firewall for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense
5.8MEDIUM
 CVE-2024-20268
all versions
A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and C
7.7HIGH
 CVE-2024-20355
all versions
A vulnerability in the implementation of SAML 2.0 single sign-on (SSO) for remote access VPN services in Cisco Adaptive Security A
5.0MEDIUM
 CVE-2024-20293
>= 9.19.1 and <= 9.19.1.24
A vulnerability in the activation of an access control list (ACL) on Cisco Adaptive Security Appliance (ASA) Software and Cisco Fi
5.8MEDIUM
 CVE-2024-20358
all versions
A vulnerability in the Cisco Adaptive Security Appliance (ASA) restore functionality that is available in Cisco ASA Software and C
6.0MEDIUM
 CVE-2024-20359
all versions
A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins and that has been available in
6.0MEDIUM
 CVE-2024-20353
all versions
A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Thr
8.6HIGH
 CVE-2023-20275
all versions
A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat D
4.1MEDIUM
 CVE-2023-20264
>= 9.18.1 and <= 9.18.3.46
A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 single sign-on (SSO) for remote access VPN
6.1MEDIUM
 CVE-2023-20247
all versions
A vulnerability in the remote access SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threa
5.0MEDIUM
 CVE-2023-20095
all versions
A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat De
8.6HIGH
 CVE-2023-20042
all versions
A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat D
6.8MEDIUM
 CVE-2023-20256
all versions
Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower
5.0MEDIUM
 CVE-2023-20245
all versions
Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower
5.8MEDIUM
 CVE-2023-20086
all versions
A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)
8.6HIGH
 CVE-2023-20269
all versions
A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat De
5.0MEDIUM
 CVE-2023-20006
all versions
A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and C
8.6HIGH
 CVE-2023-20081
all versions
A vulnerability in the IPv6 DHCP (DHCPv6) client module of Cisco Adaptive Security Appliance (ASA) Software, Cisco Firepower Threa
6.8MEDIUM
 CVE-2022-20947
all versions
A vulnerability in dynamic access policies (DAP) functionality of Cisco Adaptive Security Appliance (ASA) Software and Firepower T
8.6HIGH
 CVE-2022-20928
all versions
A vulnerability in the authentication and authorization flows for VPN connections in Cisco Adaptive Security Appliance (ASA) Softw
5.8MEDIUM
 CVE-2022-20927
all versions
A vulnerability in the SSL/TLS client of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)
7.7HIGH
 CVE-2022-20924
all versions
A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and C
7.7HIGH
 CVE-2022-20826
all versions
A vulnerability in the secure boot implementation of Cisco Secure Firewalls 3100 Series that are running Cisco Adaptive Security A
6.4MEDIUM
 CVE-2022-20866
>= 9.16.0 and < 9.16.3.19
A vulnerability in the handling of RSA keys on devices running Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepowe
7.4HIGH
 CVE-2022-20713
all versions
A vulnerability in the VPN web client services component of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower T
4.3MEDIUM
 CVE-2022-20760
< 9.12.4.38
A vulnerability in the DNS inspection handler of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FT
8.6HIGH
 CVE-2022-20759
< 9.12.4.38
A vulnerability in the web services interface for remote access VPN features of Cisco Adaptive Security Appliance (ASA) Software a
8.8HIGH
 CVE-2022-20745
< 9.12.4.38
A vulnerability in the web services interface for remote access VPN features of Cisco Adaptive Security Appliance (ASA) Software a
8.6HIGH
 CVE-2022-20742
< 9.12.4.38
A vulnerability in an IPsec VPN library of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FT
7.4HIGH
 CVE-2022-20737
< 9.12.4.38
A vulnerability in the handler for HTTP authentication for resources accessed through the Clientless SSL VPN portal of Cisco Adapt
8.5HIGH
 CVE-2022-20715
< 9.8.4.44
A vulnerability in the remote access SSL VPN features of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Thre
8.6HIGH
 CVE-2022-20795
>= 9.17.0 and <= 9.17.1.9
A vulnerability in the implementation of the Datagram TLS (DTLS) protocol in Cisco Adaptive Security Appliance (ASA) Software and
5.8MEDIUM
 CVE-2021-34704
>= 9.15 and < 9.15.1.17
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defen
8.6HIGH
 CVE-2021-1573
>= 9.8 and < 9.8.4.40
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defen
8.6HIGH
 CVE-2021-40125
>= 9.8.0 and < 9.8.4.40
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) implementation of Cisco Adaptive Security Appliance (ASA) Software
5.3MEDIUM
 CVE-2021-40118
>= 9.9.0 and < 9.12.4.29
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defen
8.6HIGH
 CVE-2021-40117
>= 9.9.0 and < 9.12.4.26
A vulnerability in SSL/TLS message handler for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense
8.6HIGH
 CVE-2021-34794
>= 9.14.0 and < 9.14.2.4
A vulnerability in the Simple Network Management Protocol version 3 (SNMPv3) access control functionality of Cisco Adaptive Securi
5.3MEDIUM
 CVE-2021-34793
>= 9.9.0 and < 9.12.4.29
A vulnerability in the TCP Normalizer of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Softw
8.6HIGH
 CVE-2021-34792
>= 9.8.0 and < 9.8.4.40
A vulnerability in the memory management of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) So
8.6HIGH
 CVE-2021-34791
>= 9.12.0 and < 9.12.4.18
Multiple vulnerabilities in the Application Level Gateway (ALG) for the Network Address Translation (NAT) feature of Cisco Adaptiv
4.7MEDIUM
 CVE-2021-34790
>= 9.12.0 and < 9.12.4.29
Multiple vulnerabilities in the Application Level Gateway (ALG) for the Network Address Translation (NAT) feature of Cisco Adaptiv
4.7MEDIUM
 CVE-2021-34787
>= 9.9.0 and < 9.12.4.25
A vulnerability in the identity-based firewall (IDFW) rule processing feature of Cisco Adaptive Security Appliance (ASA) Software
5.3MEDIUM
 CVE-2021-34783
>= 9.8.0 and < 9.8.4.40
A vulnerability in the software-based SSL/TLS message handler of Cisco Adaptive Security Appliance (ASA) Software and Firepower Th
8.6HIGH
 CVE-2021-1422
all versions
A vulnerability in the software cryptography module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat
7.7HIGH
 CVE-2021-1504
>= 9.7 and < 9.8.4.35
Multiple vulnerabilities in Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could all
8.6HIGH
 CVE-2021-1501
>= 9.8 and < 9.8.4.34
A vulnerability in the SIP inspection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defens
8.6HIGH
 CVE-2021-1493
>= 9.8 and < 9.8.4.34
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defen
8.5HIGH
 CVE-2021-1488
>= 9.13 and < 9.13.1.21
A vulnerability in the upgrade process of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD
6.7MEDIUM
 CVE-2021-1476
>= 9.13 and < 9.13.1.21
A vulnerability in the CLI of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software c
6.7MEDIUM
 CVE-2021-1445
>= 9.7 and < 9.8.4.34
Multiple vulnerabilities in Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could all
8.6HIGH
 CVE-2020-3599
>= 9.7.0 and < 9.8.4.29
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthent
6.1MEDIUM
 CVE-2020-3585
< 9.13.1.13
A vulnerability in the TLS handler of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) So
5.3MEDIUM
 CVE-2020-3583
>= 9.7 and < 9.8.4.29
Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Thr
6.1MEDIUM
 CVE-2020-3582
< 9.8.4.26
Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Thr
6.1MEDIUM
 CVE-2020-3581
< 9.8.4.29
Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Thr
6.1MEDIUM
 CVE-2020-3580
< 9.8.4.34
Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Thr
6.1MEDIUM
 CVE-2020-3578
< 9.6.4.45
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defen
5.3MEDIUM
 CVE-2020-3572
>= 9.8.0 and < 9.8.4.26
A vulnerability in the SSL/TLS session handler of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defe
8.6HIGH
 CVE-2020-3564
>= 9.8.0 and < 9.8.4.26
A vulnerability in the FTP inspection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defens
5.3MEDIUM
 CVE-2020-3561
>= 9.8.0 and < 9.8.4.20
A vulnerability in the Clientless SSL VPN (WebVPN) of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat
4.7MEDIUM
 CVE-2020-3555
>= 9.7.0 and < 9.8.4.24
A vulnerability in the SIP inspection process of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defen
6.8MEDIUM
 CVE-2020-3554
>= 9.13.0 and < 9.13.1.13
A vulnerability in the TCP packet processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defens
7.5HIGH
 CVE-2020-3529
>= 9.8.0 and < 9.8.4.29
A vulnerability in the SSL VPN negotiation process for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat
8.6HIGH
 CVE-2020-3528
>= 9.8.0 and < 9.8.4.26
A vulnerability in the OSPF Version 2 (OSPFv2) implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepo
8.6HIGH
 CVE-2020-3458
>= 9.8.0 and < 9.8.4.26
Multiple vulnerabilities in the secure boot process of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defen
6.7MEDIUM
 CVE-2020-3457
>= 9.8 and < 9.8.4.29
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to inject arbitrary commands that a
6.7MEDIUM
 CVE-2020-3436
>= 9.8.0 and < 9.8.4.25
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD)
8.6HIGH
 CVE-2020-3373
all versions
A vulnerability in the IP fragment-handling implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower
8.6HIGH
 CVE-2020-3304
>= 9.8.0 and < 9.8.4.22
A vulnerability in the web interface of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Softwa
8.6HIGH
 CVE-2019-15992
>= 9.7 and < 9.8.4.15
A vulnerability in the implementation of the Lua interpreter integrated in Cisco Adaptive Security Appliance (ASA) Software and Ci
7.2HIGH
 CVE-2020-3452
>= 9.6 and < 9.6.4.42
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defen
7.5HIGH
 CVE-2020-3334
>= 9.10 and < 9.10.1.37
A vulnerability in the ARP packet processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defens
7.4HIGH
 CVE-2020-3306
>= 9.7 and < 9.8.4.10
A vulnerability in the DHCP module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) So
7.5HIGH
 CVE-2020-3305
>= 9.7 and < 9.8.4.10
A vulnerability in the implementation of the Border Gateway Protocol (BGP) module in Cisco Adaptive Security Appliance (ASA) Softw
7.5HIGH
 CVE-2020-3303
>= 9.7 and < 9.8.4.10
A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cis
7.5HIGH
 CVE-2020-3298
>= 9.6.0 and <= 9.6.4.40
A vulnerability in the Open Shortest Path First (OSPF) implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisc
7.5HIGH
 CVE-2020-3259
>= 9.8 and < 9.8.4.20
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defen
7.5HIGH
 CVE-2020-3254
>= 9.6 and < 9.6.4.34
Multiple vulnerabilities in the Media Gateway Control Protocol (MGCP) inspection feature of Cisco Adaptive Security Appliance (ASA
7.5HIGH
 CVE-2020-3196
>= 9.6 and < 9.6.4.40
A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) handler of Cisco Adaptive Security Appliance (ASA
8.6HIGH
 CVE-2020-3195
>= 9.12 and < 9.12.3.2
A vulnerability in the Open Shortest Path First (OSPF) implementation in Cisco Adaptive Security Appliance (ASA) Software and Cisc
7.5HIGH
 CVE-2020-3191
>= 9.6 and < 9.6.4.36
A vulnerability in DNS over IPv6 packet processing for Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defen
8.6HIGH
 CVE-2020-3187
>= 9.6 and < 9.6.4.40
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defen
9.1CRITICAL
 CVE-2020-3125
>= 9.8 and < 9.8.4.15
A vulnerability in the Kerberos authentication feature of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthen
9.8CRITICAL
 CVE-2020-3167
>= 9.8 and < 9.9.2.66
A vulnerability in the CLI of Cisco FXOS Software and Cisco UCS Manager Software could allow an authenticated, local attacker to e
7.8HIGH
 CVE-2020-3166
>= 9.8 and < 9.9.2.66
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to read or write arbitrary files on
6.7MEDIUM
 CVE-2019-15256
>= 9.9 and < 9.9.2.47
A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cis
8.6HIGH
 CVE-2019-12698
>= 9.7 and < 9.8.4.9
A vulnerability in the WebVPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)
7.5HIGH
 CVE-2019-12695
>= 9.7 and < 9.8.4.9
A vulnerability in the Clientless SSL VPN (WebVPN) portal of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat De
6.1MEDIUM
 CVE-2019-12693
>= 9.7 and < 9.8.4
A vulnerability in the Secure Copy (SCP) feature of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated,
4.9MEDIUM
 CVE-2019-12678
>= 9.5 and < 9.6.4.34
A vulnerability in the Session Initiation Protocol (SIP) inspection module of Cisco Adaptive Security Appliance (ASA) Software and
7.5HIGH
 CVE-2019-12677
< 9.1.7.4
A vulnerability in the Secure Sockets Layer (SSL) VPN feature of Cisco Adaptive Security Appliance (ASA) Software could allow an a
6.5MEDIUM
 CVE-2019-12676
>= 9.7 and < 9.8.4.8
A vulnerability in the Open Shortest Path First (OSPF) implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisc
7.4HIGH
 CVE-2019-12673
>= 9.7 and < 9.8.4.10
A vulnerability in the FTP inspection engine of Cisco Adaptive Security (ASA) Software and Cisco Firepower Threat Defense (FTD) So
7.5HIGH
 CVE-2019-1945
< 9.4.4.37
Multiple vulnerabilities in the smart tunnel functionality of Cisco Adaptive Security Appliance (ASA) could allow an authenticated
6.7MEDIUM
 CVE-2019-1944
< 9.4.4.37
Multiple vulnerabilities in the smart tunnel functionality of Cisco Adaptive Security Appliance (ASA) could allow an authenticated
7.3HIGH
 CVE-2019-1934
<= 8.2
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an authentic
8.8HIGH
 CVE-2019-1714
>= 9.7 and < 9.8.4
A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 Single Sign-On (SSO) for Clientless SSL VPN
8.6HIGH
 CVE-2019-1713
>= 9.5 and < 9.6.4.25
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthent
8.1HIGH
 CVE-2019-1708
>= 9.8 and <= 9.8.4
A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE) feature for the Cisco Adaptive S
8.6HIGH
 CVE-2019-1706
>= 9.9 and <= 9.9.2.50
A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual Appliance (ASAv) and Firepower 2100 Ser
8.6HIGH
 CVE-2019-1705
>= 9.4 and < 9.4.4.34
A vulnerability in the remote access VPN session manager of Cisco Adaptive Security Appliance (ASA) Software could allow a unauthe
5.3MEDIUM
 CVE-2019-1701
>= 9.5 and < 9.6.4.25
Multiple vulnerabilities in the WebVPN service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defe
4.8MEDIUM
 CVE-2019-1697
>= 9.7 and < 9.8.4
A vulnerability in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco Adaptive Security Appli
6.8MEDIUM
 CVE-2019-1695
>= 9.9 and < 9.9.2.50
A vulnerability in the detection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FT
6.5MEDIUM
 CVE-2019-1694
>= 9.5 and < 9.6.4.25
A vulnerability in the TCP processing engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defens
8.6HIGH
 CVE-2019-1693
>= 9.5 and < 9.6.4.25
A vulnerability in the WebVPN service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)
6.5MEDIUM
 CVE-2019-1687
>= 9.5 and < 9.6.4.25
A vulnerability in the TCP proxy functionality for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Def
7.5HIGH
 CVE-2018-15388
>= 9.5 and < 9.6.4.25
A vulnerability in the WebVPN login process of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense
8.6HIGH
 CVE-2018-15465
>= 9.5 and < 9.6.4.20
A vulnerability in the authorization subsystem of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, b
8.1HIGH
 CVE-2018-15454
>= 9.4 and < 9.4.4.27
A vulnerability in the Session Initiation Protocol (SIP) inspection engine of Cisco Adaptive Security Appliance (ASA) Software and
8.6HIGH
 CVE-2018-15399
all versions
A vulnerability in the TCP syslog module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (F
6.8MEDIUM
 CVE-2018-15398
all versions
A vulnerability in the per-user-override feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat De
4.0MEDIUM
 CVE-2018-15397
all versions
A vulnerability in the implementation of Traffic Flow Confidentiality (TFC) over IPsec functionality in Cisco Adaptive Security Ap
6.8MEDIUM
 CVE-2018-15383
all versions
A vulnerability in the cryptographic hardware accelerator driver of Cisco Adaptive Security Appliance (ASA) Software and Cisco Fir
7.5HIGH
 CVE-2018-0296
>= 9.1 and < 9.1.7.29
A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacke
7.5HIGH
 CVE-2018-0251
all versions
A vulnerability in the Web Server Authentication Required screen of the Clientless Secure Sockets Layer (SSL) VPN portal of Cisco
6.1MEDIUM
 CVE-2018-0242
all versions
A vulnerability in the WebVPN web-based management interface of Cisco Adaptive Security Appliance could allow an unauthenticated,
6.1MEDIUM
 CVE-2018-0240
>= 9.6.0.0 and < 9.6.4.6
Multiple vulnerabilities in the Application Layer Protocol Inspection feature of Cisco Adaptive Security Appliance (ASA) Software
8.6HIGH
 CVE-2018-0231
all versions
A vulnerability in the Transport Layer Security (TLS) library of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepo
8.6HIGH
 CVE-2018-0230
all versions
A vulnerability in the internal packet-processing functionality of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepow
8.6HIGH
 CVE-2018-0229
all versions
A vulnerability in the implementation of Security Assertion Markup Language (SAML) Single Sign-On (SSO) authentication for Cisco A
6.5MEDIUM
 CVE-2018-0228
>= 9.2 and < 9.2.4.27
A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance (ASA) could allow an unauthenticat
8.6HIGH
 CVE-2018-0227
>= 9.4.4 and <= 9.4.4.13
A vulnerability in the Secure Sockets Layer (SSL) Virtual Private Network (VPN) Client Certificate Authentication feature for Cisc
7.5HIGH
 CVE-2018-0101
>= 9.2.0 and < 9.2.4.27
A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could
10.0CRITICAL
 CVE-2017-12246
all versions
A vulnerability in the implementation of the direct authentication feature in Cisco Adaptive Security Appliance (ASA) Software cou
8.6HIGH
 CVE-2017-6770
all versions
Cisco IOS 12.0 through 15.6, Adaptive Security Appliance (ASA) Software 7.0.1 through 9.7.1.2, NX-OS 4.0 through 12.0, and IOS XE
4.2MEDIUM
 CVE-2017-6765
all versions
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) 9.1(6.11) and 9.4(1.2) could allo
6.1MEDIUM
 CVE-2017-6764
all versions
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) 9.5(1) could allow an authenticat
5.4MEDIUM
 CVE-2017-6752
all versions
A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) 9.3(3) and 9.6(2) could allow an unauthenticat
7.5HIGH
 CVE-2012-5010
<= 8.2\(4\)
ASA 5515-X Adaptive Security Appliance Adaptive Security Appliance (ASA) Software 9.4.x before 9.4.1 Interim, 9.2.x before 9.2.4 I
8.1HIGH
 CVE-2017-6610
all versions
A vulnerability in the Internet Key Exchange Version 1 (IKEv1) XAUTH code of Cisco ASA Software could allow an authenticated, remo
7.7HIGH
 CVE-2017-6609
all versions
A vulnerability in the IPsec code of Cisco ASA Software could allow an authenticated, remote attacker to cause a reload of the aff
7.7HIGH
 CVE-2017-6608
all versions
A vulnerability in the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) code of Cisco ASA Software could allow an una
8.6HIGH
 CVE-2017-6607
all versions
A vulnerability in the DNS code of Cisco ASA Software could allow an unauthenticated, remote attacker to cause an affected device
8.7HIGH
 CVE-2017-3793
all versions
A vulnerability in the TCP normalizer of Cisco Adaptive Security Appliance (ASA) Software (8.0 through 8.7 and 9.0 through 9.6) an
4.0MEDIUM
 CVE-2017-3867
all versions
A vulnerability in the Border Gateway Protocol (BGP) Bidirectional Forwarding Detection (BFD) implementation of Cisco Adaptive Sec
5.3MEDIUM
 CVE-2017-3807
all versions
A vulnerability in Common Internet Filesystem (CIFS) code in the Clientless SSL VPN functionality of Cisco ASA Software, Major Rel
8.8HIGH
 CVE-2016-6461
all versions
A vulnerability in the HTTP web-based management interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthent
5.9MEDIUM
 CVE-2016-6432
all versions
A vulnerability in the Identity Firewall feature of Cisco ASA Software before 9.6(2.1) could allow an unauthenticated, remote atta
8.1HIGH
 CVE-2016-6431
all versions
A vulnerability in the local Certificate Authority (CA) feature of Cisco ASA Software before 9.6(1.5) could allow an unauthenticat
7.5HIGH
 CVE-2016-6424
all versions
The DHCP Relay implementation in Cisco Adaptive Security Appliance (ASA) Software 8.4.7.29 and 9.1.7.4 allows remote attackers to
6.5MEDIUM
 CVE-2016-6367
>= 7.2.0 and < 8.4\(3\)
Cisco Adaptive Security Appliance (ASA) Software before 8.4(1) on ASA 5500, ASA 5500-X, PIX, and FWSM devices allows local users t
7.8HIGH
 CVE-2016-6366
>= 7.2.1 and < 9.0.4.40
Buffer overflow in Cisco Adaptive Security Appliance (ASA) Software through 9.4.2.3 on ASA 5500, ASA 5500-X, ASA Services Module,
8.8HIGH
 CVE-2016-1445
>= 9.5.0 and < 9.5.2.10
Cisco Adaptive Security Appliance (ASA) Software 8.2 through 9.4.3.3 allows remote attackers to bypass intended ICMP Echo Reply AC
5.3MEDIUM
 CVE-2016-1379
all versions
Cisco Adaptive Security Appliance (ASA) Software 9.0 through 9.5.1 mishandles IPsec error processing, which allows remote authenti
6.5MEDIUM
 CVE-2016-1385
all versions
The XML parser in Cisco Adaptive Security Appliance (ASA) Software through 9.5.2 allows remote authenticated users to cause a deni
6.5MEDIUM
 CVE-2016-1367
all versions
The DHCPv6 relay implementation in Cisco Adaptive Security Appliance (ASA) Software 9.4.1 allows remote attackers to cause a denia
7.5HIGH
 CVE-2015-6360
all versions
The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted f
7.5HIGH
 CVE-2016-1287
all versions
Buffer overflow in the IKEv1 and IKEv2 implementations in Cisco ASA Software before 8.4(7.30), 8.7 before 8.7(1.18), 9.0 before 9.
9.8CRITICAL
 CVE-2016-1295
all versions
Cisco Adaptive Security Appliance (ASA) Software 8.4 allows remote attackers to obtain sensitive information via an AnyConnect aut
5.3MEDIUM
 CVE-2015-6423
all versions
The DCERPC Inspection implementation in Cisco Adaptive Security Appliance (ASA) Software 9.4.1 through 9.5.1 allows remote authent
4.3MEDIUM
 CVE-2015-6379
all versions
The XML parser in the management interface in Cisco Adaptive Security Appliance (ASA) Software 8.4 allows remote authenticated use
 CVE-2015-6327
all versions
The IKEv1 implementation in Cisco Adaptive Security Appliance (ASA) software 7.2 and 8.2 before 8.2(5.58), 8.3 and 8.4 before 8.4(
 CVE-2015-6326
all versions
Cisco Adaptive Security Appliance (ASA) software 7.2 and 8.2 before 8.2(5.58), 8.3 and 8.4 before 8.4(7.29), 8.5 through 8.7 befor
 CVE-2015-6325
all versions
Cisco Adaptive Security Appliance (ASA) software 7.2 and 8.2 before 8.2(5.58), 8.3 and 8.4 before 8.4(7.29), 8.5 through 8.7 befor
 CVE-2015-6324
all versions
The DHCPv6 relay implementation in Cisco Adaptive Security Appliance (ASA) software 9.0 before 9.0(4.37), 9.1 before 9.1(6.6), 9.2
 CVE-2015-4321
all versions
The Unicast Reverse Path Forwarding (uRPF) implementation in Cisco Adaptive Security Appliance (ASA) Software 9.3(1.50), 9.3(2.100
 CVE-2015-4458
all versions
The TLS implementation in the Cavium cryptographic-module firmware, as distributed with Cisco Adaptive Security Appliance (ASA) So
 CVE-2015-4241
all versions
Cisco Adaptive Security Appliance (ASA) Software 9.3(2) allows remote attackers to cause a denial of service (system reload) by se
 CVE-2015-4239
all versions
Cisco Adaptive Security Appliance (ASA) Software 9.3(2.243) and 100.13(0.21) allows remote attackers to cause a denial of service
 CVE-2015-4238
all versions
The SNMP implementation in Cisco Adaptive Security Appliance (ASA) Software 8.4(7) and 8.6(1.2) allows remote authenticated users
 CVE-2015-4550
all versions
The Cavium cryptographic-module firmware on Cisco Adaptive Security Appliance (ASA) devices with software 9.3(3) and 9.4(1.1) does
 CVE-2015-0760
>= 7.0 and < 8.2.2.13
The IKEv1 implementation in Cisco ASA Software 7.x, 8.0.x, 8.1.x, and 8.2.x before 8.2.2.13 allows remote authenticated users to b
 CVE-2015-0742
all versions
The Protocol Independent Multicast (PIM) application in Cisco Adaptive Security Appliance (ASA) Software 9.2(0.0), 9.2(0.104), 9.2
 CVE-2015-0677
all versions
The XML parser in Cisco Adaptive Security Appliance (ASA) Software 8.4 before 8.4(7.28), 8.6 before 8.6(1.17), 9.0 before 9.0(4.33
 CVE-2015-0676
all versions
The DNS implementation in Cisco Adaptive Security Appliance (ASA) Software 7.2 before 7.2(5.16), 8.2 before 8.2(5.57), 8.3 before
 CVE-2015-0675
all versions
The failover ipsec implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1 before 9.1(6), 9.2 before 9.2(3.3), and
 CVE-2014-8023
<= 9.2.3
Cisco Adaptive Security Appliance (ASA) Software 9.2(.3) and earlier, when challenge-response authentication is used, does not pro
 CVE-2015-0619
all versions
Memory leak in the embedded web server in the WebVPN subsystem in Cisco Adaptive Security Appliance (ASA) Software allows remote a
 CVE-2013-5557
<= 9.1\(2\)
The Proxy Bypass Content Rewriter feature in the WebVPN subsystem in Cisco Adaptive Security Appliance (ASA) Software 9.1(.2) and
 CVE-2015-0578
all versions
Cisco Adaptive Security Appliance (ASA) Software, when a DHCPv6 relay is configured, allows remote attackers to cause a denial of
 CVE-2014-3410
all versions
The syslog-management subsystem in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to obtain an administr
 CVE-2014-8012
all versions
Cross-site scripting (XSS) vulnerability in the WebVPN Portal Login page in Cisco Adaptive Security Appliance (ASA) Software allow
 CVE-2014-3407
<= 9.3\(2\)
The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 9.3(.2) and earlier does not properly allocate memo
 CVE-2014-3394
all versions
The Smart Call Home (SCH) implementation in Cisco ASA Software 8.2 before 8.2(5.50), 8.4 before 8.4(7.15), 8.6 before 8.6(1.14), 8
 CVE-2014-3393
all versions
The Clientless SSL VPN portal customization framework in Cisco ASA Software 8.2 before 8.2(5.51), 8.3 before 8.3(2.42), 8.4 before
 CVE-2014-3392
all versions
The Clientless SSL VPN portal in Cisco ASA Software 8.2 before 8.2(5.51), 8.3 before 8.3(2.42), 8.4 before 8.4(7.23), 8.6 before 8
 CVE-2014-3391
all versions
Untrusted search path vulnerability in Cisco ASA Software 8.x before 8.4(3), 8.5, and 8.7 before 8.7(1.13) allows local users to g
 CVE-2014-3390
all versions
The Virtual Network Management Center (VNMC) policy implementation in Cisco ASA Software 8.7 before 8.7(1.14), 9.2 before 9.2(2.8)
 CVE-2014-3399
<= 9.2\(2.4\)
The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 9.2(.2.4) and earlier does not properly manage sess
 CVE-2014-3398
all versions
The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to obtain potentially sensi
 CVE-2013-6691
<= 9.0\(4.1\)
The WebVPN CIFS implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0(.4.1) and earlier allows remote CIFS server
 CVE-2013-5567
<= 8.4\(6\)
Cisco Adaptive Security Appliance (ASA) Software 8.4(.6) and earlier, when using an unsupported configuration with overlapping cri
 CVE-2014-2151
<= 8.4\(7.15\)
The WebVPN portal in Cisco Adaptive Security Appliance (ASA) Software 8.4(.7.15) and earlier allows remote authenticated users to
 CVE-2014-3264
<= 9.1\(5\)
Cisco Adaptive Security Appliance (ASA) Software 9.1(.5) and earlier allows remote authenticated users to cause a denial of servic
 CVE-2014-2181
all versions
Cisco Adaptive Security Appliance (ASA) Software allows remote authenticated users to read files by sending a crafted URL to the H
 CVE-2014-2182
all versions
Cisco Adaptive Security Appliance (ASA) Software, when DHCPv6 replay is configured, allows remote attackers to cause a denial of s
 CVE-2014-2154
all versions
Memory leak in the SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to cause a de
 CVE-2014-2129
all versions
The SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.48), 8.4 before 8.4(6.5), 9.0 befor
 CVE-2014-2128
all versions
The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.47, 8.3 before 8.3(2.40), 8.4 befo
 CVE-2014-2127
all versions
Cisco Adaptive Security Appliance (ASA) Software 8.x before 8.2(5.48), 8.3 before 8.3(2.40), 8.4 before 8.4(7.9), 8.6 before 8.6(1
 CVE-2014-2126
all versions
Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.47), 8.4 before 8.4(7.5), 8.7 before 8.7(1.11), 9.0 before 9.0(3
 CVE-2014-2120
all versions
Cross-site scripting (XSS) vulnerability in the WebVPN login page in Cisco Adaptive Security Appliance (ASA) Software allows remot
6.1MEDIUM
 CVE-2014-0739
all versions
Race condition in the Phone Proxy component in Cisco Adaptive Security Appliance (ASA) Software 9.1(.3) and earlier allows remote
 CVE-2014-0738
all versions
The Phone Proxy component in Cisco Adaptive Security Appliance (ASA) Software 9.1(.3) and earlier allows remote attackers to bypas
 CVE-2013-6707
<= 9.1\(3\)
Memory leak in the connection-manager implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1(.3) and earlier allow
 CVE-2013-6696
all versions
Cisco Adaptive Security Appliance (ASA) Software does not properly handle errors during the processing of DNS responses, which all
 CVE-2013-6682
all versions
The phone-proxy implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0.3.6 and earlier does not properly validate
 CVE-2013-5568
all versions
The auto-update implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0.3.6 and earlier allows remote attackers to
 CVE-2013-5560
all versions
The IPv6 implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1.3 and earlier, when NAT64 or NAT66 is enabled, doe
 CVE-2013-5551
all versions
Cisco Adaptive Security Appliance (ASA) Software, when certain same-security-traffic and management-access options are enabled, al
 CVE-2013-5544
all versions
The VPN authentication functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to cause a denial
 CVE-2013-5542
all versions
Cisco Adaptive Security Appliance (ASA) Software 8.4 before 8.4(7.2), 8.7 before 8.7(1.8), 9.0 before 9.0(3.6), and 9.1 before 9.1
 CVE-2013-5515
all versions
The Clientless SSL VPN feature in Cisco Adaptive Security Appliance (ASA) Software 8.x before 8.2(5.44), 8.3.x before 8.3(2.39), 8
 CVE-2013-5513
all versions
Cisco Adaptive Security Appliance (ASA) Software 8.2.x before 8.2(5.46), 8.3.x before 8.3(2.39), 8.4.x before 8.4(7), 8.5.x before
 CVE-2013-5512
all versions
Race condition in the HTTP Deep Packet Inspection (DPI) feature in Cisco Adaptive Security Appliance (ASA) Software 8.2.x before 8
 CVE-2013-5511
all versions
The Adaptive Security Device Management (ASDM) remote-management feature in Cisco Adaptive Security Appliance (ASA) Software 8.2.x
 CVE-2013-5510
all versions
The remote-access VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 7.x before 7.2(5.12), 8.x before 8.2(5.46
 CVE-2013-5509
all versions
The SSL implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0 before 9.0(2.6) and 9.1 before 9.1(2) allows remote
 CVE-2013-5508
all versions
The SQL*Net inspection engine in Cisco Adaptive Security Appliance (ASA) Software 7.x before 7.2(5.12), 8.x before 8.2(5.44), 8.3.
 CVE-2013-5507
all versions
The IPsec implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1 before 9.1(1.7), when an IPsec VPN tunnel is enab
 CVE-2013-3415
all versions
Cisco Adaptive Security Appliance (ASA) Software 8.4.x before 8.4(3) and 8.6.x before 8.6(1.3) does not properly manage memory upo
 CVE-2013-3458
all versions
Cisco Adaptive Security Appliances (ASA) devices, when SMP is used, do not properly process X.509 certificates, which allows remot
 CVE-2013-3463
all versions
The protocol-inspection feature on Cisco Adaptive Security Appliances (ASA) devices does not properly implement the idle timeout,
 CVE-2013-3414
all versions
Cross-site scripting (XSS) vulnerability in the WebVPN portal login page on Cisco Adaptive Security Appliances (ASA) devices allow
 CVE-2013-1215
all versions
The vpnclient program in the Easy VPN component on Cisco Adaptive Security Appliances (ASA) 5505 devices allows local users to gai
 CVE-2013-1195
all versions
The time-based ACL implementation on Cisco Adaptive Security Appliances (ASA) devices, and in Cisco Firewall Services Module (FWSM
 CVE-2013-1199
all versions
Race condition in the CIFS implementation in the rewriter module in the Clientless SSL VPN component on Cisco Adaptive Security Ap
 CVE-2013-1194
all versions
The ISAKMP implementation on Cisco Adaptive Security Appliances (ASA) devices generates different responses for IKE aggressive-mod
 CVE-2013-1193
all versions
The Secure Shell (SSH) implementation on Cisco Adaptive Security Appliances (ASA) devices, and in Cisco Firewall Services Module (
 CVE-2013-1152
all versions
Cisco Adaptive Security Appliances (ASA) devices with software 9.0 before 9.0(1.2) allow remote attackers to cause a denial of ser
 CVE-2013-1151
all versions
Cisco Adaptive Security Appliances (ASA) devices with software 7.x before 7.2(5.10), 8.0 before 8.0(5.31), 8.1 and 8.2 before 8.2(
 CVE-2013-1150
all versions
The authentication-proxy implementation on Cisco Adaptive Security Appliances (ASA) devices with software 7.x before 7.2(5.10), 8.
 CVE-2013-1149
all versions
Cisco Adaptive Security Appliances (ASA) devices with software 7.x before 7.2(5.10), 8.0 before 8.0(5.28), 8.1 and 8.2 before 8.2(
 CVE-2013-1138
all versions
The NAT process on Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to cause a denial of service (connecti
 CVE-2012-6395
all versions
Cisco Adaptive Security Appliances (ASA) devices with firmware 8.4 do not properly validate unspecified input related to UNC share
 CVE-2012-5717
all versions
Cisco Adaptive Security Appliances (ASA) devices with firmware 8.x through 8.4(1) do not properly manage SSH sessions, which allow
 CVE-2012-5419
all versions
Cisco Adaptive Security Appliance (ASA) software 8.7.1 and 8.7.1.1 for the Cisco ASA 1000V Cloud Firewall allows remote attackers
 CVE-2012-4663
all versions
The DCERPC inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM)
 CVE-2012-4662
all versions
The DCERPC inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM)
 CVE-2012-4661
all versions
Stack-based buffer overflow in the DCERPC inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and t
 CVE-2012-4660
all versions
The SIP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in
 CVE-2012-4659
all versions
The AAA functionality in the IPv4 SSL VPN implementations on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the
 CVE-2012-4643
all versions
The DHCP server on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Cata
 CVE-2012-2474
all versions
Memory leak on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 through 8.4 allows remote authentica
 CVE-2012-2472
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 and 8.4, when SIP inspection is enabled, create man
 CVE-2012-3058
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series de
 CVE-2012-0378
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 through 8.4 allow remote attackers to cause a denia
 CVE-2012-0335
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 through 8.4 do not properly perform proxy authentic
 CVE-2011-4006
all versions
The ESMTP inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 through 8.5 allows
 CVE-2011-3309
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 through 8.4 process IKE requests despite a vpnclien
 CVE-2011-3285
all versions
CRLF injection vulnerability in /+CSCOE+/logon.html on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software
 CVE-2012-0358
all versions
Buffer overflow in the Cisco Port Forwarder ActiveX control in cscopf.ocx, as distributed through the Clientless VPN feature on Ci
 CVE-2012-0356
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series de
 CVE-2012-0355
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series de
 CVE-2012-0354
all versions
The Threat Detection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM)
 CVE-2012-0353
all versions
The UDP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in
 CVE-2011-2060
all versions
The platform-sw component on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 before 8.2(5.3), 8.3 b
 CVE-2011-3304
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, w
 CVE-2011-3303
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, w
 CVE-2011-3302
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, w
 CVE-2011-3301
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, w
 CVE-2011-3300
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, w
 CVE-2011-3299
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, w
 CVE-2011-3298
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, w
 CVE-2011-0396
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.23), 8.1 before 8.1(2.49), 8.2 before
 CVE-2011-0395
all versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.20), 8.1 before 8.1(2.48), 8.2 before
 CVE-2011-0394
<= 8.3\(1\)
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 before 7.0(8.11), 7.1 and 7.2 before 7.2(5.1), 8.0
 CVE-2011-0393
<= 8.3\(1\)
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 before 7.0(8.12), 7.1 and 7.2 before 7.2(5.2), 8.0
 CVE-2011-0379
all versions
Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint
 CVE-2010-4692
<= 8.3\(1\)
Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.3(2) allows remot
 CVE-2010-4691
<= 8.3\(1\)
Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.3(2) allows remot
 CVE-2010-4690
<= 8.3\(1\)
The Mobile User Security (MUS) service on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.3(2)
 CVE-2010-4689
<= 8.3\(1\)
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.3(2) do not properly preserve ACL behavior aft
 CVE-2010-4688
<= 8.3\(1\)
Unspecified vulnerability in the SIP inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with softw
 CVE-2010-4682
<= 8.2\(2\)
Memory leak on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) allows remote attackers to
 CVE-2010-4681
<= 8.2\(2\)
Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) allows remot
 CVE-2010-4680
<= 8.2\(2\)
The WebVPN implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) permits the
 CVE-2010-4679
<= 8.2\(2\)
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) do not properly handle Online Certificate
 CVE-2010-4678
<= 8.2\(2\)
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) permit packets to pass before the configu
 CVE-2010-4677
<= 8.2\(2\)
emWEB on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) allows remote attackers to cause
 CVE-2010-4676
<= 8.2\(2\)
Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) allows remot
 CVE-2010-4675
<= 8.2\(2\)
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) do not properly determine the interfaces
 CVE-2010-4674
<= 8.2\(4\)
Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2(4) and earlier allows
 CVE-2010-4673
<= 8.2\(4\)
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2(4) and earlier allow remote attackers to cause a de
 CVE-2010-4672
<= 8.2\(3\)
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2(3) and earlier allow remote attackers to cause a de
 CVE-2010-4670
<= 8.2\(3\)
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack on Cisco Adaptive Security Appliances (ASA) 5500 series devi
 CVE-2009-5037
<= 8.2\(2\)
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) allow remote attackers to cause a denial
 CVE-2010-2817
all versions
Unspecified vulnerability in the IKE implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software
 CVE-2010-2816
all versions
Unspecified vulnerability in the SIP inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with softw
 CVE-2010-2815
all versions
Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 se
 CVE-2010-2814
all versions
Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 se
 CVE-2010-1581
all versions
Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 se
 CVE-2010-1580
all versions
Unspecified vulnerability in the SunRPC inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with so
 CVE-2010-1579
all versions
Unspecified vulnerability in the SunRPC inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with so
 CVE-2010-1578
all versions
Unspecified vulnerability in the SunRPC inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with so
 CVE-2010-0440
>= 8.0 and < 8.0\(5\)
Cross-site scripting (XSS) vulnerability in +CSCOT+/translation in Cisco Secure Desktop 3.4.2048, and other versions before 3.5; a
 CVE-2008-2059
all versions
Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 8.0.x before 8.0(3)9 allows remote attackers to bypass co
 CVE-2008-2058
all versions
Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 7.2.x before 7.2(3)2 and 8.0.x before 8.0(2)17 allows rem
 CVE-2008-2057
all versions
The Instant Messenger (IM) inspection engine in Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 7.2.x bef
 CVE-2008-2056
all versions
Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 8.0.x before 8.0(3)9 and 8.1.x before 8.1(1)1 allows remo
 CVE-2008-2055
all versions
Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 7.1.x before 7.1(2)70, 7.2.x before 7.2(4), and 8.0.x bef
 CVE-2008-0028
< 7.2\(3\)6
Unspecified vulnerability in Cisco PIX 500 Series Security Appliance and 5500 Series Adaptive Security Appliance (ASA) before 7.2(
 CVE-2007-5569
all versions
Cisco PIX and ASA appliances with 7.1 and 7.2 software, when configured for TLS sessions to the device, allow remote attackers to
 CVE-2007-5568
all versions
Cisco PIX and ASA appliances with 7.0 through 8.0 software, and Cisco Firewall Services Module (FWSM) 3.1(5) and earlier, allow re
 CVE-2007-4786
>= 7.0 and < 7.0.7.1
Cisco Adaptive Security Appliance (ASA) running PIX 7.0 before 7.0.7.1, 7.1 before 7.1.2.61, 7.2 before 7.2.2.34, and 8.0 before 8
5.3MEDIUM
 CVE-2007-2464
<= 7.2.2
Race condition in Cisco Adaptive Security Appliance (ASA) and PIX 7.1 before 7.1(2)49 and 7.2 before 7.2(2)19, when using "clientl
 CVE-2007-2463
<= 7.2.2
Unspecified vulnerability in Cisco Adaptive Security Appliance (ASA) and PIX 7.1 before 7.1(2)49 and 7.2 before 7.2(2)17 allows re
 CVE-2007-2462
<= 7.2.2
Unspecified vulnerability in Cisco Adaptive Security Appliance (ASA) and PIX 7.2 before 7.2(2)8, when using Layer 2 Tunneling Prot
 CVE-2007-2461
all versions
The DHCP relay agent in Cisco Adaptive Security Appliance (ASA) and PIX 7.2 allows remote attackers to cause a denial of service (
 CVE-2006-3906
all versions
Internet Key Exchange (IKE) version 1 protocol, as implemented on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls, allows rem
 CVE-2006-0515
all versions
Cisco PIX/ASA 7.1.x before 7.1(2) and 7.0.x before 7.0(5), PIX 6.3.x before 6.3.5(112), and FWSM 2.3.x before 2.3(4) and 3.x befor
 CVE-2005-4499
all versions
The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Cont
 CVE-2005-3788
all versions
Race condition in Cisco Adaptive Security Appliance (ASA) 7.0(0), 7.0(2), and 7.0(4), when running with an Active/Standby configur
 CVE-2005-3669
all versions
Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in multiple Cisco products allo
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin