Vulnerabilities > CVE-2014-2151 - Unspecified vulnerability in Cisco Adaptive Security Appliance Software

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

cisco

NVD

Published: 2014-06-18

Updated: 2022-06-02

Summary

The WebVPN portal in Cisco Adaptive Security Appliance (ASA) Software 8.4(.7.15) and earlier allows remote authenticated users to obtain sensitive information via a crafted JavaScript file, aka Bug ID CSCui04520.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Adaptive Security Appliance Software *	1

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2151
http://tools.cisco.com/security/center/viewAlert.x?alertId=34627
http://www.securityfocus.com/bid/68063
http://www.securitytracker.com/id/1030445