Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Secure Firewall Threat Defense Software Geolocation Remote Access VPN Bypass Vulnerability
Vulnerability Description
A vulnerability in the Geolocation-Based Remote Access (RA) VPN feature of Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies to allow or deny HTTP connections based on a country or region. This vulnerability exists because the URL string is not fully parsed. An attacker could exploit this vulnerability by sending a crafted HTTP connection through the targeted device. A successful exploit could allow the attacker to bypass configured policies and gain access to a network where the connection should have been denied.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Vulnerability Type
值处理不恰当
Vulnerability Title
Cisco Secure Firewall Threat Defense 安全漏洞
Vulnerability Description
Cisco Secure Firewall Threat Defense是美国思科(Cisco)公司的一个集成式防火墙平台。 Cisco Secure Firewall Threat Defense存在安全漏洞,该漏洞源于URL字符串解析不完整,可能导致绕过策略限制。
CVSS Information
N/A
Vulnerability Type
N/A