Vulnerabilities > Cisco > Adaptive Security Appliance 5500 > 8.2

DATE	CVE	VULNERABILITY TITLE	RISK
2009-12-29	CVE-2009-4455	Permissions, Privileges, and Access Controls vulnerability in Cisco Adaptive Security Appliance 5500 The default configuration of Cisco ASA 5500 Series Adaptive Security Appliance (Cisco ASA) 7.0, 7.1, 7.2, 8.0, 8.1, and 8.2 allows portal traffic to access arbitrary backend servers, which might allow remote authenticated users to bypass intended access restrictions and access unauthorized web sites via a crafted URL obfuscated with ROT13 and a certain encoding. network low complexity cisco CWE-264	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.