CVE-2021-34783

high-risk

Published 2021-10-27

A vulnerability in the software-based SSL/TLS message handler of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. This vulnerability is due to insufficient validation of SSL/TLS messages when the device performs software-based SSL/TLS decryption. An attacker could exploit this vulnerability by sending a crafted SSL/TLS message to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Note: Datagram TLS (DTLS) messages cannot be used to exploit this vulnerability.

Do I need to act?

0.77% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.6/10 High

NETWORK / LOW complexity

Affected Products (18)

Firepower Threat Defense

Adaptive Security Appliance Software

Asa 5512-X Firmware

Asa 5505 Firmware

Asa 5515-X Firmware

Asa 5525-X Firmware

Asa 5545-X Firmware

Asa 5555-X Firmware

Asa 5580 Firmware

Asa 5585-X Firmware

Affected Vendors

Cisco

References (2)

Vendor Advisory https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-f...

/ 100

high-risk

Severity 29/34 · Critical

Exploitability 3/34 · Minimal

Exposure 19/34 · Moderate