Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 05/10/2014 Updated: 11/08/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software allows remote malicious users to obtain potentially sensitive software-version information by reading the verbose response data that is provided for a request to an unspecified URL, aka Bug ID CSCuq65542.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco adaptive security appliance software -

A vulnerability in the SSL VPN code of Cisco ASA Software could allow an unauthenticated, remote attacker to obtain information about the Cisco ASA Software version This information could be used for reconnaissance attacks The vulnerability is due to verbose output returned when a specific URL is submitted to the affected system An attacker cou ...

CWE-200 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3398 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20141006-CVE-2014-3398

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-3398

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect