Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the TLS protocol implementation of legacy Cisco ASA 5500 Series (ASA 5505, 5510, 5520, 5540, and 5550) devices could allow an unauthenticated, remote attacker to access sensitive information, aka a Return of Bleichenbacher's Oracle Threat (ROBOT) attack. An attacker could iteratively query a server running a vulnerable TLS stack implementation to perform cryptanalytic operations that may allow decryption of previously captured TLS sessions. Cisco Bug IDs: CSCvg97652.
CVSS Information
N/A
Vulnerability Type
信息暴露
Vulnerability Title
多款Cisco产品信息泄露漏洞
Vulnerability Description
Cisco ASA 5505等都是美国思科(Cisco)公司的不同型号的防火墙安全设备。 多款Cisco产品中存在信息泄露漏洞,该漏洞源于程序没有正确的执行用于阻止Bleichenbacher攻击的对策。远程攻击者可通过发送特制的TLS消息利用该漏洞访问敏感信息。以下产品受到影响:Cisco ASA 5505;Cisco ASA 5510;Cisco ASA 5520;Cisco ASA 5540;Cisco ASA 5550。
CVSS Information
N/A
Vulnerability Type
N/A