A vulnerability in the Network Service Group (NSG) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured access control list (ACL) and allow traffic that should be denied to flow through an affected device. This vulnerability is due to a logic error that occurs when NSG ACLs are populated on an affected device. An attacker could exploit this vulnerability by establishing a connection to the affected device. A successful exploit could allow the attacker to bypass configured ACL rules.
This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Adaptive_security_appliance_software | Cisco | 9.16.1 (including) | 9.16.1 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.1.28 (including) | 9.16.1.28 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.2 (including) | 9.16.2 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.2.3 (including) | 9.16.2.3 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.2.7 (including) | 9.16.2.7 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.2.11 (including) | 9.16.2.11 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.2.13 (including) | 9.16.2.13 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.2.14 (including) | 9.16.2.14 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.3 (including) | 9.16.3 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.3.3 (including) | 9.16.3.3 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.3.14 (including) | 9.16.3.14 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.3.15 (including) | 9.16.3.15 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.3.19 (including) | 9.16.3.19 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.3.23 (including) | 9.16.3.23 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4 (including) | 9.16.4 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.9 (including) | 9.16.4.9 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.14 (including) | 9.16.4.14 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.18 (including) | 9.16.4.18 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.19 (including) | 9.16.4.19 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.27 (including) | 9.16.4.27 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.38 (including) | 9.16.4.38 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.39 (including) | 9.16.4.39 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.42 (including) | 9.16.4.42 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.48 (including) | 9.16.4.48 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.55 (including) | 9.16.4.55 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.57 (including) | 9.16.4.57 (including) |
| Adaptive_security_appliance_software | Cisco | 9.16.4.61 (including) | 9.16.4.61 (including) |
| Adaptive_security_appliance_software | Cisco | 9.17.1 (including) | 9.17.1 (including) |
| Adaptive_security_appliance_software | Cisco | 9.17.1.7 (including) | 9.17.1.7 (including) |
| Adaptive_security_appliance_software | Cisco | 9.17.1.9 (including) | 9.17.1.9 (including) |
| Adaptive_security_appliance_software | Cisco | 9.17.1.10 (including) | 9.17.1.10 (including) |
| Adaptive_security_appliance_software | Cisco | 9.17.1.11 (including) | 9.17.1.11 (including) |
| Adaptive_security_appliance_software | Cisco | 9.17.1.13 (including) | 9.17.1.13 (including) |
| Adaptive_security_appliance_software | Cisco | 9.17.1.15 (including) | 9.17.1.15 (including) |
| Adaptive_security_appliance_software | Cisco | 9.17.1.20 (including) | 9.17.1.20 (including) |
| Adaptive_security_appliance_software | Cisco | 9.17.1.30 (including) | 9.17.1.30 (including) |
| Adaptive_security_appliance_software | Cisco | 9.17.1.33 (including) | 9.17.1.33 (including) |
| Adaptive_security_appliance_software | Cisco | 9.17.1.39 (including) | 9.17.1.39 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.1 (including) | 9.18.1 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.1.3 (including) | 9.18.1.3 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.2 (including) | 9.18.2 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.2.5 (including) | 9.18.2.5 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.2.7 (including) | 9.18.2.7 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.2.8 (including) | 9.18.2.8 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.3 (including) | 9.18.3 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.3.39 (including) | 9.18.3.39 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.3.46 (including) | 9.18.3.46 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.3.53 (including) | 9.18.3.53 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.3.55 (including) | 9.18.3.55 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.3.56 (including) | 9.18.3.56 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.4 (including) | 9.18.4 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.4.5 (including) | 9.18.4.5 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.4.8 (including) | 9.18.4.8 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.4.22 (including) | 9.18.4.22 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.4.24 (including) | 9.18.4.24 (including) |
| Adaptive_security_appliance_software | Cisco | 9.18.4.29 (including) | 9.18.4.29 (including) |
| Adaptive_security_appliance_software | Cisco | 9.19.1 (including) | 9.19.1 (including) |
| Adaptive_security_appliance_software | Cisco | 9.19.1.5 (including) | 9.19.1.5 (including) |
| Adaptive_security_appliance_software | Cisco | 9.19.1.9 (including) | 9.19.1.9 (including) |
| Adaptive_security_appliance_software | Cisco | 9.19.1.12 (including) | 9.19.1.12 (including) |
| Adaptive_security_appliance_software | Cisco | 9.19.1.18 (including) | 9.19.1.18 (including) |
| Adaptive_security_appliance_software | Cisco | 9.19.1.22 (including) | 9.19.1.22 (including) |
| Adaptive_security_appliance_software | Cisco | 9.19.1.24 (including) | 9.19.1.24 (including) |
| Adaptive_security_appliance_software | Cisco | 9.19.1.27 (including) | 9.19.1.27 (including) |
| Adaptive_security_appliance_software | Cisco | 9.19.1.28 (including) | 9.19.1.28 (including) |
| Adaptive_security_appliance_software | Cisco | 9.19.1.31 (including) | 9.19.1.31 (including) |
| Adaptive_security_appliance_software | Cisco | 9.20.1 (including) | 9.20.1 (including) |
| Adaptive_security_appliance_software | Cisco | 9.20.1.5 (including) | 9.20.1.5 (including) |
| Adaptive_security_appliance_software | Cisco | 9.20.2 (including) | 9.20.2 (including) |
| Adaptive_security_appliance_software | Cisco | 9.20.2.10 (including) | 9.20.2.10 (including) |
| Adaptive_security_appliance_software | Cisco | 9.20.2.21 (including) | 9.20.2.21 (including) |
| Adaptive_security_appliance_software | Cisco | 9.20.2.22 (including) | 9.20.2.22 (including) |