CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-3415

Cisco Adaptive Security Appliance (ASA) Software 8.4.x before 8.4(3) and 8.6.x before 8.6(1.3) does not properly manage memory upon an AnyConnect SSL VPN client disconnection, which allows remote attackers to cause a denial of service (memory consumption, and forwarding outage or system hang) via packets to the disconnected machine's IP address, aka Bug ID CSCtt36737.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.1%

CVSS Severity

CVSS v2 Score 7.8

References

Products affected by CVE-2013-3415

Cisco » Adaptive Security Appliance Software » Version: 8.4

cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4
Cisco » Adaptive Security Appliance Software » Version: 8.4(1)

cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1)
Cisco » Adaptive Security Appliance Software » Version: 8.4(1.11)

cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1.11)
Cisco » Adaptive Security Appliance Software » Version: 8.4(2)

cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(2)
Cisco » Adaptive Security Appliance Software » Version: 8.4(2.11)

cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(2.11)
Cisco » Adaptive Security Appliance Software » Version: 8.6

cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6
Cisco » Adaptive Security Appliance Software » Version: 8.6(1)

cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6(1)
Cisco » Adaptive Security Appliance Software » Version: 8.6(1.10)

cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6(1.10)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-3415

Products

Pricing

Contact Us