← Back

CVE-2021-40118

nvd nist
Published: Oct 27, 2021Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition. This vulnerability is due to improper input validation when parsing HTTPS requests. An attacker could exploit this vulnerability by sending a malicious HTTPS request to an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

Affected (49)

Cisco
11 products
Adaptive Security Appliance
Adaptive Security Appliance Software
Firepower Threat Defense
Asa 5512 X Firmware
Asa 5505 Firmware
Asa 5515 X Firmware
Asa 5525 X Firmware
Asa 5545 X Firmware
Asa 5555 X Firmware
Asa 5580 Firmware
Asa 5585 X Firmware
Configuration A
9 vulnerable
Vulnerable SoftwareAffected Versions
Adaptive Security Appliance
Before 9.8.4.40
Cisco
Adaptive Security Appliance Software
From 9.13.0 to 9.14.3.9
Adaptive Security Appliance Software
From 9.15.0 to 9.15.1.17
Adaptive Security Appliance Software
From 9.16.0 to 9.16.2.3
Adaptive Security Appliance Software
From 9.9.0 to 9.12.4.29
Cisco
Firepower Threat Defense
Before 6.4.0.13
Firepower Threat Defense
From 6.5.0 to 6.6.5
Firepower Threat Defense
From 6.7.0 to 6.7.0.3
Firepower Threat Defense
From 7.0.0 to 7.0.1
Configuration B
5 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cisco
Asa 5512 X Firmware
Version 009.012(004.024)
Asa 5512 X Firmware
Version 009.015(001.015)
Asa 5512 X Firmware
Version 009.015(001.016)
Asa 5512 X Firmware
Version 009.015(001)
Asa 5512 X Firmware
Version 009.016(001)
Running on/withPlatform Versions
Cisco
Asa 5512 X
All versions
Configuration C
5 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cisco
Asa 5505 Firmware
Version 009.012(004.024)
Asa 5505 Firmware
Version 009.015(001.015)
Asa 5505 Firmware
Version 009.015(001.016)
Asa 5505 Firmware
Version 009.015(001)
Asa 5505 Firmware
Version 009.016(001)
Running on/withPlatform Versions
Cisco
Asa 5505
All versions
Configuration D
5 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cisco
Asa 5515 X Firmware
Version 009.012(004.024)
Asa 5515 X Firmware
Version 009.015(001.015)
Asa 5515 X Firmware
Version 009.015(001.016)
Asa 5515 X Firmware
Version 009.015(001)
Asa 5515 X Firmware
Version 009.016(001)
Running on/withPlatform Versions
Cisco
Asa 5515 X
All versions
Configuration E
5 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cisco
Asa 5525 X Firmware
Version 009.012(004.024)
Asa 5525 X Firmware
Version 009.015(001.015)
Asa 5525 X Firmware
Version 009.015(001.016)
Asa 5525 X Firmware
Version 009.015(001)
Asa 5525 X Firmware
Version 009.016(001)
Running on/withPlatform Versions
Cisco
Asa 5525 X
All versions
Configuration F
5 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cisco
Asa 5545 X Firmware
Version 009.012(004.024)
Asa 5545 X Firmware
Version 009.015(001.015)
Asa 5545 X Firmware
Version 009.015(001.016)
Asa 5545 X Firmware
Version 009.015(001)
Asa 5545 X Firmware
Version 009.016(001)
Running on/withPlatform Versions
Cisco
Asa 5545 X
All versions
Configuration G
5 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cisco
Asa 5555 X Firmware
Version 009.012(004.024)
Asa 5555 X Firmware
Version 009.015(001.015)
Asa 5555 X Firmware
Version 009.015(001.016)
Asa 5555 X Firmware
Version 009.015(001)
Asa 5555 X Firmware
Version 009.016(001)
Running on/withPlatform Versions
Cisco
Asa 5555 X
All versions
Configuration H
5 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cisco
Asa 5580 Firmware
Version 009.012(004.024)
Asa 5580 Firmware
Version 009.015(001.015)
Asa 5580 Firmware
Version 009.015(001.016)
Asa 5580 Firmware
Version 009.015(001)
Asa 5580 Firmware
Version 009.016(001)
Running on/withPlatform Versions
Cisco
Asa 5580
All versions
Configuration I
5 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cisco
Asa 5585 X Firmware
Version 009.012(004.024)
Asa 5585 X Firmware
Version 009.015(001.015)
Asa 5585 X Firmware
Version 009.015(001.016)
Asa 5585 X Firmware
Version 009.015(001)
Asa 5585 X Firmware
Version 009.016(001)
Running on/withPlatform Versions
Cisco
Asa 5585 X
All versions

Related CWEs

CWE-121
Stack-based Buffer Overflow
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

References (2)

Source: psirt@cisco.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.