Vulnerability Details CVE-2008-3815
Unspecified vulnerability in Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 7.0 before 7.0(8)3, 7.1 before 7.1(2)78, 7.2 before 7.2(4)16, 8.0 before 8.0(4)6, and 8.1 before 8.1(1)13, when configured as a VPN using Microsoft Windows NT Domain authentication, allows remote attackers to bypass VPN authentication via unknown vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 71.8%
CVSS Severity
CVSS v2 Score 4.3
References
- http://secunia.com/advisories/32360
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a183ba.shtml
- http://www.securityfocus.com/bid/31864
- http://www.securitytracker.com/id?1021089
- http://www.securitytracker.com/id?1021090
- http://www.vupen.com/english/advisories/2008/2899
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46024
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5983
- http://secunia.com/advisories/32360
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a183ba.shtml
- http://www.securityfocus.com/bid/31864
- http://www.securitytracker.com/id?1021089
- http://www.securitytracker.com/id?1021090
- http://www.vupen.com/english/advisories/2008/2899
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46024
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5983
Products affected by CVE-2008-3815
-
cpe:2.3:h:cisco:asa_5500:-
-
cpe:2.3:h:cisco:asa_5500:6.3
-
cpe:2.3:h:cisco:asa_5500:7.0
-
cpe:2.3:h:cisco:asa_5500:7.0(4)
-
cpe:2.3:h:cisco:asa_5500:7.0.4.3
-
cpe:2.3:h:cisco:asa_5500:7.1
-
cpe:2.3:h:cisco:asa_5500:7.2
-
cpe:2.3:h:cisco:asa_5500:7.2(2)
-
cpe:2.3:h:cisco:pix:7.0
-
cpe:2.3:h:cisco:pix:7.1
-
cpe:2.3:h:cisco:pix:7.2
-
cpe:2.3:h:cisco:pix:8.0
-
cpe:2.3:h:cisco:pix:8.1