CVE-2011-3309

Cisco Adaptive Security Appliance Software 8.2-8.4 - Exposure of Sensitive Information via IKE Responder Traffic

Title source: llm
STIX 2.1

Description

Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 through 8.4 process IKE requests despite a vpnclient mode configuration, which allows remote attackers to obtain potentially sensitive information by reading IKE responder traffic, aka Bug ID CSCtt07749.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1027008

Scores

EPSS 0.0107
EPSS Percentile 60.8%

Details

CWE
CWE-200
Status published
Products (21)
cisco/5500_series_adaptive_security_appliance
cisco/adaptive_security_appliance_software 8.2\(1\)
cisco/adaptive_security_appliance_software 8.2\(2\)
cisco/adaptive_security_appliance_software 8.2\(3\)
cisco/adaptive_security_appliance_software 8.2\(3.9\)
cisco/adaptive_security_appliance_software 8.2\(4\)
cisco/adaptive_security_appliance_software 8.2\(4.1\)
cisco/adaptive_security_appliance_software 8.2\(4.4\)
cisco/adaptive_security_appliance_software 8.2\(5\)
cisco/adaptive_security_appliance_software 8.2.1
... and 11 more
Published May 02, 2012
Tracked Since Feb 18, 2026