CVE Vulnerabilities

CVE-2009-4912

Published: Jun 29, 2010 | Modified: Jun 30, 2010

CVSS 3.x

N/A

Source:

NVD

CVSS 2.x

10 HIGH

RedHat/V2

RedHat/V3

Ubuntu

Additional information

NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-4912
CWE	https://cwe.mitre.org/data/definitions/264.html

Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) complete an SSL handshake with an HTTPS client even if this client is unauthorized, which might allow remote attackers to bypass intended access restrictions via an HTTPS session, aka Bug ID CSCso10876.

Affected Software

Name	Vendor	Start Version	End Version
Asa_5580	Cisco	*	8.1(1)

References

http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.