BDU%3A2018-01372 — Vulnetix

BDU%3A2018-01372 PUBLISHED CVSS 5 MEDIUM

Уязвимость реализации Security Assertion Markup Language механизма аутентификации Single sign-on клиента программного обеспечения защищенного мобильного доступа Cisco AnyConnect Secure Mobility Client, межсетевых экранов Cisco Adaptive Security Appliance (ASA) и Cisco Firepower Threat Defense (FTD), позволяющая нарушителю обойти процедуру аутентификации

Risk Scores

CVSS 2.0

Affected Products

Vendor	Product	Versions
Cisco Systems Inc.	Firepower Threat Defense, AnyConnect Secure Mobility Client, Adaptive Security Appliance

Exploit Intelligence

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-asaanyconnect (circl)
https://nvd.nist.gov/vuln/detail/CVE-2018-0229#vulnCurrentDescriptionTitle (circl)

Timeline

Nov 23, 2018 CVE Published
Mar 23, 2021 CVE Updated

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-asaanyconnect url
https://nvd.nist.gov/vuln/detail/CVE-2018-0229#vulnCurrentDescriptionTitle url

Open in Interactive Console →