Vulnerabilities > Cisco > ASA CX Context Aware Security Software

DATE CVE VULNERABILITY TITLE RISK
2017-02-01 CVE-2016-9225 Resource Management Errors vulnerability in Cisco ASA CX Context-Aware Security Software
A vulnerability in the data plane IP fragment handler of the Cisco Adaptive Security Appliance (ASA) CX Context-Aware Security module could allow an unauthenticated, remote attacker to cause the CX module to be unable to process further traffic, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-399
8.6
8.6
2016-02-07 CVE-2016-1301 Improper Access Control vulnerability in Cisco products
The RBAC implementation in Cisco ASA-CX Content-Aware Security software before 9.3.1.1(112) and Cisco Prime Security Manager (PRSM) software before 9.3.1.1(112) allows remote authenticated users to change arbitrary passwords via a crafted HTTP request, aka Bug ID CSCuo94842.
network
low complexity
cisco CWE-284
8.8
8.8