Vulnerabilities > Cisco > ASA 5512 X Firmware

DATE CVE VULNERABILITY TITLE RISK
2020-05-06 CVE-2020-3186 Unspecified vulnerability in Cisco products
A vulnerability in the management access list configuration of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured management interface access list on an affected system.
network
low complexity
cisco
5.3
2020-05-06 CVE-2020-3179 Double Free vulnerability in Cisco products
A vulnerability in the generic routing encapsulation (GRE) tunnel decapsulation feature of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-415
7.5
2020-05-06 CVE-2020-3125 Improper Authentication vulnerability in Cisco products
A vulnerability in the Kerberos authentication feature of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to impersonate the Kerberos key distribution center (KDC) and bypass authentication on an affected device that is configured to perform Kerberos authentication for VPN or local device access.
network
low complexity
cisco CWE-287
critical
9.8
2020-02-19 CVE-2011-2054 Improper Authentication vulnerability in Cisco products
A vulnerability in the Cisco ASA that could allow a remote attacker to successfully authenticate using the Cisco AnyConnect VPN client if the Secondary Authentication type is LDAP and the password is left blank, providing the primary credentials are correct.
network
high complexity
cisco CWE-287
7.5
2019-10-02 CVE-2019-15256 Resource Exhaustion vulnerability in Cisco products
A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-400
8.6