Access Control Bypass in Cisco Adaptive Security Appliances
CVE-2013-1195

Currently unrated

Key Information:

Vendor: Cisco
Status: Firewall Services Module; Adaptive Security Appliance Software
Vendor: CVE Published:; 24 April 2013

Summary

The time-based ACL implementation within Cisco Adaptive Security Appliances (ASA) and Firewall Services Module (FWSM) has a flaw in handling periodic statements for the time-range command. This vulnerability enables remote attackers to bypass access restrictions and potentially send network traffic during periods that should be restricted. This compromised access can lead to unauthorized actions and heightened risks for networks relying on these devices.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 24, 2013