COOEY // HUBcompliance · community · intelligence

FAIL › dossier

Adaptive Security Appliance (ASA) product

4
failure events
0
zero-days
1
RCEs
4
on KEV
0
critical
65
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 4 events

DateEventSevFlagsShameSummary
2022-05-24 CVE-2016-6367 high ⚡RCE ⌖KEV 65 A vulnerability in the command-line interface (CLI) parser of Cisco ASA software could allow an authenticated, local attacker to create a denial-of-service (DoS) condition or potentially execute code.
2024-11-12 CVE-2014-2120 high ⌖KEV 50 Cisco Adaptive Security Appliance (ASA) contains a cross-site scripting (XSS) vulnerability in the WebVPN login page. This vulnerability allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter.
2022-05-24 CVE-2016-6366 high ⌖KEV 50 A buffer overflow vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco ASA software could allow an attacker to cause a reload of the affected system or to remotely execute code.
2021-11-03 CVE-2018-0296 high ⌖KEV 50 Cisco Adaptive Security Appliance (ASA) contains an improper input validation vulnerability with HTTP URLs. Exploitation could allow an attacker to cause a denial-of-service (DoS) condition or information disclosure.