Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Clientless SSL VPN portal in Cisco ASA Software 8.2 before 8.2(5.51), 8.3 before 8.3(2.42), 8.4 before 8.4(7.23), 8.6 before 8.6(1.15), 9.0 before 9.0(4.24), 9.1 before 9.1(5.12), 9.2 before 9.2(2.8), and 9.3 before 9.3(1.1) allows remote attackers to obtain sensitive information from process memory or modify memory contents via crafted parameters, aka Bug ID CSCuq29136.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco ASA Software 输入验证错误漏洞
Vulnerability Description
Cisco ASA是美国思科(Cisco)公司的一套防火墙设备。该设备还包括IPS(入侵防御系统)、SSL VPN、IPSec VPN、反垃圾邮件等功能。 Cisco ASA Software的Clientless SSL VPN端口中存在安全漏洞,该漏洞源于程序没有充分过滤用户的输入。远程攻击者可借助特制的参数利用该漏洞获取进程内存的敏感信息,或修改内存内容。以下版本受到影响:Cisco ASA Software 8.2(5.51)之前8.2版本,8.3(2.42)之前8.3版本,8.4(7.23)之前
CVSS Information
N/A
Vulnerability Type
N/A