CVE-2015-0760

Cisco ASA 7.x-8.2.x < 8.2.2.13 Authenticated XAUTH Bypass via IKEv1

Title source: llm
STIX 2.1

Description

The IKEv1 implementation in Cisco ASA Software 7.x, 8.0.x, 8.1.x, and 8.2.x before 8.2.2.13 allows remote authenticated users to bypass XAUTH authentication via crafted IKEv1 packets, aka Bug ID CSCus47259.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1032473
Vendor Advisory vendor-advisory x_refsource_cisco
http://tools.cisco.com/security/center/viewAlert.x?alertId=39157

Scores

EPSS 0.0203
EPSS Percentile 78.7%

Details

CWE
CWE-20 CWE-264
Status published
Products (1)
cisco/adaptive_security_appliance_software 7.0 - 8.2.2.13
Published Jun 04, 2015
Tracked Since Feb 18, 2026