Vulnerabilities > Cisco > Adaptive Security Device Manager

DATE CVE VULNERABILITY TITLE RISK
2022-06-24 CVE-2022-20829 Insufficient Verification of Data Authenticity vulnerability in Cisco products
A vulnerability in the packaging of Cisco Adaptive Security Device Manager (ASDM) images and the validation of those images by Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker with administrative privileges to upload an ASDM image that contains malicious code to a device that is running Cisco ASA Software.
network
low complexity
cisco CWE-345
7.2
2022-06-22 CVE-2022-20651 Information Exposure Through Log Files vulnerability in Cisco Adaptive Security Device Manager
A vulnerability in the logging component of Cisco Adaptive Security Device Manager (ASDM) could allow an authenticated, local attacker to view sensitive information in clear text on an affected system.
local
low complexity
cisco CWE-532
5.5
2021-07-08 CVE-2021-1585 Code Injection vulnerability in Cisco Adaptive Security Device Manager
A vulnerability in the Cisco Adaptive Security Device Manager (ASDM) Launcher could allow an unauthenticated, remote attacker to execute arbitrary code on a user's operating system.
network
high complexity
cisco CWE-94
8.1