The Mobile User Security (MUS) service on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.3(2) does not properly authenticate HTTP requests from a Web Security appliance (WSA), which might allow remote attackers to obtain sensitive information via a HEAD request, aka Bug ID CSCte53635.
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Adaptive_security_appliance_software | Cisco | * | 8.3(1) (including) |
Adaptive_security_appliance_software | Cisco | 7.0 (including) | 7.0 (including) |
Adaptive_security_appliance_software | Cisco | 7.0(0) (including) | 7.0(0) (including) |
Adaptive_security_appliance_software | Cisco | 7.0(2) (including) | 7.0(2) (including) |
Adaptive_security_appliance_software | Cisco | 7.0(4) (including) | 7.0(4) (including) |
Adaptive_security_appliance_software | Cisco | 7.0(5) (including) | 7.0(5) (including) |
Adaptive_security_appliance_software | Cisco | 7.0(5.2) (including) | 7.0(5.2) (including) |
Adaptive_security_appliance_software | Cisco | 7.0(6.7) (including) | 7.0(6.7) (including) |
Adaptive_security_appliance_software | Cisco | 7.0.1 (including) | 7.0.1 (including) |
Adaptive_security_appliance_software | Cisco | 7.0.1.4 (including) | 7.0.1.4 (including) |
Adaptive_security_appliance_software | Cisco | 7.0.2 (including) | 7.0.2 (including) |
Adaptive_security_appliance_software | Cisco | 7.0.4 (including) | 7.0.4 (including) |
Adaptive_security_appliance_software | Cisco | 7.0.4.3 (including) | 7.0.4.3 (including) |
Adaptive_security_appliance_software | Cisco | 7.0.5 (including) | 7.0.5 (including) |
Adaptive_security_appliance_software | Cisco | 7.0.6 (including) | 7.0.6 (including) |
Adaptive_security_appliance_software | Cisco | 7.0.7 (including) | 7.0.7 (including) |
Adaptive_security_appliance_software | Cisco | 7.0.8 (including) | 7.0.8 (including) |
Adaptive_security_appliance_software | Cisco | 7.0.8-interim (including) | 7.0.8-interim (including) |
Adaptive_security_appliance_software | Cisco | 7.1 (including) | 7.1 (including) |
Adaptive_security_appliance_software | Cisco | 7.1(2) (including) | 7.1(2) (including) |
Adaptive_security_appliance_software | Cisco | 7.1(2.5) (including) | 7.1(2.5) (including) |
Adaptive_security_appliance_software | Cisco | 7.1(2.27) (including) | 7.1(2.27) (including) |
Adaptive_security_appliance_software | Cisco | 7.1(2.48) (including) | 7.1(2.48) (including) |
Adaptive_security_appliance_software | Cisco | 7.1(2.49) (including) | 7.1(2.49) (including) |
Adaptive_security_appliance_software | Cisco | 7.1(5) (including) | 7.1(5) (including) |
Adaptive_security_appliance_software | Cisco | 7.1.1 (including) | 7.1.1 (including) |
Adaptive_security_appliance_software | Cisco | 7.1.2 (including) | 7.1.2 (including) |
Adaptive_security_appliance_software | Cisco | 7.2 (including) | 7.2 (including) |
Adaptive_security_appliance_software | Cisco | 7.2(1) (including) | 7.2(1) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(1.22) (including) | 7.2(1.22) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2) (including) | 7.2(2) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2.5) (including) | 7.2(2.5) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2.7) (including) | 7.2(2.7) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2.8) (including) | 7.2(2.8) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2.10) (including) | 7.2(2.10) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2.14) (including) | 7.2(2.14) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2.15) (including) | 7.2(2.15) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2.16) (including) | 7.2(2.16) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2.17) (including) | 7.2(2.17) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2.18) (including) | 7.2(2.18) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2.19) (including) | 7.2(2.19) (including) |
Adaptive_security_appliance_software | Cisco | 7.2(2.48) (including) | 7.2(2.48) (including) |
Adaptive_security_appliance_software | Cisco | 7.2.1 (including) | 7.2.1 (including) |
Adaptive_security_appliance_software | Cisco | 7.2.2 (including) | 7.2.2 (including) |
Adaptive_security_appliance_software | Cisco | 7.2.3 (including) | 7.2.3 (including) |
Adaptive_security_appliance_software | Cisco | 7.2.4 (including) | 7.2.4 (including) |
Adaptive_security_appliance_software | Cisco | 7.2.5 (including) | 7.2.5 (including) |
Adaptive_security_appliance_software | Cisco | 8.0 (including) | 8.0 (including) |
Adaptive_security_appliance_software | Cisco | 8.0.2 (including) | 8.0.2 (including) |
Adaptive_security_appliance_software | Cisco | 8.0.3 (including) | 8.0.3 (including) |
Adaptive_security_appliance_software | Cisco | 8.0.4 (including) | 8.0.4 (including) |
Adaptive_security_appliance_software | Cisco | 8.0.5 (including) | 8.0.5 (including) |
Adaptive_security_appliance_software | Cisco | 8.2(1) (including) | 8.2(1) (including) |
Adaptive_security_appliance_software | Cisco | 8.2(2) (including) | 8.2(2) (including) |
Adaptive_security_appliance_software | Cisco | 8.2(3) (including) | 8.2(3) (including) |
Adaptive_security_appliance_software | Cisco | 8.2(3.9) (including) | 8.2(3.9) (including) |
Adaptive_security_appliance_software | Cisco | 8.2(4) (including) | 8.2(4) (including) |
Adaptive_security_appliance_software | Cisco | 8.2.1 (including) | 8.2.1 (including) |
Adaptive_security_appliance_software | Cisco | 8.2.2 (including) | 8.2.2 (including) |
Adaptive_security_appliance_software | Cisco | 8.2.2-interim (including) | 8.2.2-interim (including) |