vulnerability

Cisco ASA: CVE-2019-1705: Cisco Adaptive Security Appliance Software VPN Denial of Service Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:N/A:P)	May 2, 2019	May 2, 2019	Aug 17, 2023

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

May 2, 2019

Added

May 2, 2019

Modified

Aug 17, 2023

Description

A vulnerability in the remote access VPN session manager of Cisco Adaptive Security Appliance (ASA) Software could allow a unauthenticated, remote attacker to cause a denial of service (DoS) condition on the remote access VPN services. The vulnerability is due to an issue with the remote access VPN session manager. An attacker could exploit this vulnerability by requesting an excessive number of remote access VPN sessions. An exploit could allow the attacker to cause a DoS condition.

Solution

cisco-asa-update-latest

References

BID-108151
CVE-2019-1705
https://attackerkb.com/topics/CVE-2019-1705
URL-https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-asa-vpn-dos

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today