VDB
CVE-2014-3392
CVE-2014-3392
PUBLISHED
CVSS 8.300000190734863 HIGH
The Clientless SSL VPN portal in Cisco ASA Software 8.2 before 8.2(5.51), 8.3 before 8.3(2.42), 8.4 before 8.4(7.23), 8.6 before 8.6(1.15), 9.0 before 9.0(4.24), 9.1 before 9.1(5.12), 9.2 before 9.2(2.8), and 9.3 before 9.3(1.1) allows remote attackers to obtain sensitive information from process memory or modify memory contents via crafted parameters, aka Bug ID CSCuq29136.
EPSS 0.49% · 65.9th percentile
Risk Scores
CVSS 2.0
8.300000190734863
EPSS Score
0.49%
65.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| cisco | adaptive_security_appliance_software | 8.2, 8.2.0.45, 8.2.1 |
Exploit Intelligence
- SERVER-WEBAPP Cisco ASA WebVPN login.html memory corruption attempt (vulnetix)
- SERVER-WEBAPP Cisco ASA WebVPN login.html memory corruption attempt (vulnetix)
- SERVER-WEBAPP Cisco ASA WebVPN login.html memory corruption attempt (community-snort)
- SERVER-WEBAPP Cisco ASA WebVPN login.html memory corruption attempt (community-snort)
- 20141008 Multiple Vulnerabilities in Cisco ASA Software (circl)
Timeline
- CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score