← Back

CVE-2012-0335

nvd nist
Published: May 2, 2012Modified: Apr 29, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 through 8.4 do not properly perform proxy authentication during attempts to cut through a firewall, which allows remote attackers to obtain sensitive information via a connection attempt, aka Bug ID CSCtx42746.

Affected (46)

Cisco
2 products
Adaptive Security Appliance Software
5500 Series Adaptive Security Appliance
Configuration A
46 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Adaptive Security Appliance Software
Version 7.2.1
Adaptive Security Appliance Software
Version 7.2.2
Adaptive Security Appliance Software
Version 7.2.3
Adaptive Security Appliance Software
Version 7.2.4
Adaptive Security Appliance Software
Version 7.2.5
Adaptive Security Appliance Software
Version 7.2
Adaptive Security Appliance Software
Version 7.2(1.22)
Adaptive Security Appliance Software
Version 7.2(1)
Adaptive Security Appliance Software
Version 7.2(2.10)
Adaptive Security Appliance Software
Version 7.2(2.14)
Adaptive Security Appliance Software
Version 7.2(2.15)
Adaptive Security Appliance Software
Version 7.2(2.16)
Adaptive Security Appliance Software
Version 7.2(2.17)
Adaptive Security Appliance Software
Version 7.2(2.18)
Adaptive Security Appliance Software
Version 7.2(2.19)
Adaptive Security Appliance Software
Version 7.2(2.48)
Adaptive Security Appliance Software
Version 7.2(2.5)
Adaptive Security Appliance Software
Version 7.2(2.7)
Adaptive Security Appliance Software
Version 7.2(2.8)
Adaptive Security Appliance Software
Version 7.2(2)
Adaptive Security Appliance Software
Version 7.2(3)
Adaptive Security Appliance Software
Version 7.2(4)
Adaptive Security Appliance Software
Version 7.2(5)
Adaptive Security Appliance Software
Version 8.2.1
Adaptive Security Appliance Software
Version 8.2.2
Adaptive Security Appliance Software
Version 8.2.2 interim
Adaptive Security Appliance Software
Version 8.2.3
Adaptive Security Appliance Software
Version 8.2(1)
Adaptive Security Appliance Software
Version 8.2(2)
Adaptive Security Appliance Software
Version 8.2(3.9)
Adaptive Security Appliance Software
Version 8.2(3)
Adaptive Security Appliance Software
Version 8.2(4.1)
Adaptive Security Appliance Software
Version 8.2(4.4)
Adaptive Security Appliance Software
Version 8.2(4)
Adaptive Security Appliance Software
Version 8.2(5)
Adaptive Security Appliance Software
Version 8.3.1
Adaptive Security Appliance Software
Version 8.3.1 interim
Adaptive Security Appliance Software
Version 8.3.2
Adaptive Security Appliance Software
Version 8.3(1)
Adaptive Security Appliance Software
Version 8.3(2)
Adaptive Security Appliance Software
Version 8.4
Adaptive Security Appliance Software
Version 8.4(1.11)
Adaptive Security Appliance Software
Version 8.4(1)
Adaptive Security Appliance Software
Version 8.4(2.11)
Adaptive Security Appliance Software
Version 8.4(2)
5500 Series Adaptive Security Appliance
All versions

Related CWEs

CWE-287
Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (8)

Source: psirt@cisco.com
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.