CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-34704

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition. This vulnerability is due to improper input validation when parsing HTTPS requests. An attacker could exploit this vulnerability by sending a malicious HTTPS request to an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 67.6%

CVSS Severity

CVSS v3 Score 8.6

CVSS v2 Score 7.1

References

Products affected by CVE-2021-34704

Cisco » Firepower Threat Defense » Version: 6.7.0

cpe:2.3:a:cisco:firepower_threat_defense:6.7.0
Cisco » Firepower Threat Defense » Version: 6.7.0.1

cpe:2.3:a:cisco:firepower_threat_defense:6.7.0.1
Cisco » Firepower Threat Defense » Version: 6.7.0.2

cpe:2.3:a:cisco:firepower_threat_defense:6.7.0.2
Cisco » Firepower Threat Defense » Version: 7.0.0

cpe:2.3:a:cisco:firepower_threat_defense:7.0.0
Cisco » Adaptive Security Appliance Software » Version: 9.15

cpe:2.3:o:cisco:adaptive_security_appliance_software:9.15
Cisco » Adaptive Security Appliance Software » Version: 9.15.1

cpe:2.3:o:cisco:adaptive_security_appliance_software:9.15.1
Cisco » Adaptive Security Appliance Software » Version: 9.15.1.1

cpe:2.3:o:cisco:adaptive_security_appliance_software:9.15.1.1
Cisco » Adaptive Security Appliance Software » Version: 9.15.1.10

cpe:2.3:o:cisco:adaptive_security_appliance_software:9.15.1.10
Cisco » Adaptive Security Appliance Software » Version: 9.15.1.15

cpe:2.3:o:cisco:adaptive_security_appliance_software:9.15.1.15
Cisco » Adaptive Security Appliance Software » Version: 9.15.1.16

cpe:2.3:o:cisco:adaptive_security_appliance_software:9.15.1.16
Cisco » Adaptive Security Appliance Software » Version: 9.15.1.4

cpe:2.3:o:cisco:adaptive_security_appliance_software:9.15.1.4
Cisco » Adaptive Security Appliance Software » Version: 9.15.1.7

cpe:2.3:o:cisco:adaptive_security_appliance_software:9.15.1.7
Cisco » Adaptive Security Appliance Software » Version: 9.16.1

cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.1
Cisco » Adaptive Security Appliance Software » Version: 9.16.1.28

cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.1.28

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-34704

Products

Pricing

Contact Us