Vulnerability Details CVE-2014-3385
Race condition in the Health and Performance Monitoring (HPM) for ASDM feature in Cisco ASA Software 8.3 before 8.3(2.42), 8.4 before 8.4(7.11), 8.5 before 8.5(1.19), 8.6 before 8.6(1.13), 8.7 before 8.7(1.11), 9.0 before 9.0(4.8), and 9.1 before 9.1(4.5) allows remote attackers to cause a denial of service (device reload) via TCP traffic that triggers many half-open connections at the same time, aka Bug ID CSCum00556.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.3%
CVSS Severity
CVSS v2 Score 7.8
References
Products affected by CVE-2014-3385
-
cpe:2.3:a:cisco:asa:8.3
-
cpe:2.3:a:cisco:asa:8.3.2.25
-
cpe:2.3:a:cisco:asa:8.4
-
cpe:2.3:a:cisco:asa:8.4.1
-
cpe:2.3:a:cisco:asa:8.4.2
-
cpe:2.3:a:cisco:asa:8.4.3
-
cpe:2.3:a:cisco:asa:8.4.4
-
cpe:2.3:a:cisco:asa:8.4.5
-
cpe:2.3:a:cisco:asa:8.4.6
-
cpe:2.3:a:cisco:asa:8.4.7
-
cpe:2.3:a:cisco:asa:8.5
-
cpe:2.3:a:cisco:asa:8.5.1.6
-
cpe:2.3:a:cisco:asa:8.6
-
cpe:2.3:a:cisco:asa:8.7
-
cpe:2.3:a:cisco:asa:9.0
-
cpe:2.3:a:cisco:asa:9.1