Access Control Bypass in Cisco ASA 5500 Series Devices
CVE-2010-4689

Currently unrated

Key Information:

Vendor: Cisco
Status: Adaptive Security Appliance Software; 5500 Series Adaptive Security Appliance; Asa 5500
Vendor: CVE Published:; 7 January 2011

Summary

Cisco Adaptive Security Appliances (ASA) 5500 series devices prior to version 8.3(2) exhibit vulnerabilities related to access control lists (ACLs) that fail to maintain their intended behavior after software migration. This oversight can permit unauthorized remote access by allowing previously denied network traffic to bypass restrictions, enabling potential exploitation by malicious actors. It is crucial for organizations utilizing affected devices to apply updates to mitigate risks associated with this vulnerability.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/64575

vdb-entryx_refsource_XF

http://www.securitytracker.com/id?1024963

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/45768

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jan 7, 2011
Vulnerability Reserved
Jan 7, 2011