Vulnerability Details : CVE-2014-0653
The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to trigger authentication-state modifications via a crafted NetBIOS logout probe response, aka Bug ID CSCuj45340.
Vulnerability category: Input validation
Exploit prediction scoring system (EPSS) score for CVE-2014-0653
Probability of exploitation activity in the next 30 days: 0.51%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 74 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2014-0653
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:P/A:N |
8.6
|
2.9
|
NIST |
CWE ids for CVE-2014-0653
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2014-0653
-
http://tools.cisco.com/security/center/viewAlert.x?alertId=32363
Cisco Adaptive Security Appliance Identity Firewall NetBIOS Logout Probe Auth State Change VulnerabilityVendor Advisory
-
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0653
Cisco Adaptive Security Appliance Identity Firewall NetBIOS Logout Probe Auth State Change VulnerabilityVendor Advisory
-
http://www.securityfocus.com/bid/64708
Cisco Adaptive Security Appliance Authorization State Change Security Bypass VulnerabilityThird Party Advisory;VDB Entry
-
http://www.securitytracker.com/id/1029570
Cisco ASA Identity Firewall NetBIOS Logout Probe Response Handling Bug Lets Remote Users Modify Access Status - SecurityTrackerThird Party Advisory;VDB Entry
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/90165
Cisco Adaptive Security Appliance Identity Firewall security bypass CVE-2014-0653 Vulnerability Report
Products affected by CVE-2014-0653
- cpe:2.3:h:cisco:adaptive_security_appliance:*:*:*:*:*:*:*:*