NVD

Id
40795  
Name
CVE-2013-5509  
Description
The SSL implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0 before 9.0(2.6) and 9.1 before 9.1(2) allows remote attackers to bypass authentication, and obtain VPN access or administrative access, via a crafted X.509 client certificate, aka Bug ID CSCuf52468.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2013-10-13  
Modified Date
2016-11-01  
Seq
2013-5509  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
206293 40795 CVE-2013-5509 20131009 Multiple Vulnerabilities in Cisco ASA Software  View
206294 40795 CVE-2013-5509 20131213 Digital Certificate Authentication Bypass Vulnerability  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
23069 JVNDB-2013-004644 Cisco Adaptive Security Appliance ソフトウェアの SSL の実装における認証を回避される脆弱性 Cisco Adaptive Security Appliance ソフトウェアの SSL の実装には、認証を回避され、VPN アクセス権または管理アクセス権を取得される脆弱性が存在します。 CVE-2013-5509 65451 CVE-2013-5509 40795 10 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-004644.html 2013-10-09 2014-01-10 View