The Cavium cryptographic-module firmware on Cisco Adaptive Security Appliance (ASA) devices with software 9.3(3) and 9.4(1.1) does not verify the AES-GCM Integrity Check Value (ICV) octets, which makes it easier for man-in-the-middle attackers to spoof IPSec and IKEv2 traffic by modifying packet data, aka Bug ID CSCuu66218.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2015-06-17 03:59
Updated : 2016-12-07 10:13
NVD link : CVE-2015-4550
Mitre link : CVE-2015-4550
JSON object : View
CWE
CWE-310
Cryptographic Issues
Products Affected
cisco
- adaptive_security_appliance_software