CVE-2015-4550

The Cavium cryptographic-module firmware on Cisco Adaptive Security Appliance (ASA) devices with software 9.3(3) and 9.4(1.1) does not verify the AES-GCM Integrity Check Value (ICV) octets, which makes it easier for man-in-the-middle attackers to spoof IPSec and IKEv2 traffic by modifying packet data, aka Bug ID CSCuu66218.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:cisco:adaptive_security_appliance_software:9.3\(3\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:adaptive_security_appliance_software:9.4\(1.1\):*:*:*:*:*:*:*

Information

Published : 2015-06-17 03:59

Updated : 2016-12-07 10:13


NVD link : CVE-2015-4550

Mitre link : CVE-2015-4550


JSON object : View

CWE
CWE-310

Cryptographic Issues

Advertisement

dedicated server usa

Products Affected

cisco

  • adaptive_security_appliance_software