{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-02-23T00:00:00", "descriptions": [{"lang": "en", "value": "Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.23), 8.1 before 8.1(2.49), 8.2 before 8.2(4.1), and 8.3 before 8.3(2.13), when a Certificate Authority (CA) is configured, allow remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCtk12352."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "20110223 Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14d.shtml"}, {"name": "1025108", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1025108"}, {"name": "asa-ca-unauth-access(65591)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65591"}, {"name": "43488", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/43488"}, {"name": "ADV-2011-0493", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2011/0493"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2011-0396", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.23), 8.1 before 8.1(2.49), 8.2 before 8.2(4.1), and 8.3 before 8.3(2.13), when a Certificate Authority (CA) is configured, allow remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCtk12352."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20110223 Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances", "refsource": "CISCO", "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14d.shtml"}, {"name": "1025108", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1025108"}, {"name": "asa-ca-unauth-access(65591)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65591"}, {"name": "43488", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/43488"}, {"name": "ADV-2011-0493", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2011/0493"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T21:51:08.972Z"}, "title": "CVE Program Container", "references": [{"name": "20110223 Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14d.shtml"}, {"name": "1025108", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1025108"}, {"name": "asa-ca-unauth-access(65591)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65591"}, {"name": "43488", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/43488"}, {"name": "ADV-2011-0493", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2011/0493"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2011-0396", "datePublished": "2011-02-25T11:00:00", "dateReserved": "2011-01-07T00:00:00", "dateUpdated": "2024-08-06T21:51:08.972Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(2\\):*:*:*:*:*:*:*", "matchCriteriaId": "81B53285-7486-47E0-8447-44ECA57A392C", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(3\\):*:*:*:*:*:*:*", "matchCriteriaId": "E0D62E55-845B-49DD-93AA-9D8E7B755F8E", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(4\\):*:*:*:*:*:*:*", "matchCriteriaId": "33E6756C-407E-4236-85A1-953F9FF6799A", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(5\\):*:*:*:*:*:*:*", "matchCriteriaId": "825E3056-F420-476D-957E-A22B164BD0F0", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.1\\(1\\):*:*:*:*:*:*:*", "matchCriteriaId": "CC516FF2-7C0D-4F58-B61B-34FE7294DC1B", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.1\\(2\\):*:*:*:*:*:*:*", "matchCriteriaId": "BDD95F2F-1C0E-4673-AE36-1BAF40EC7CC0", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.2:*:*:*:*:*:*:*", "matchCriteriaId": "7A904D03-264C-4B01-B2B6-12455106B37D", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.2\\(1\\):*:*:*:*:*:*:*", "matchCriteriaId": "74826084-14BB-47C4-9EE3-56C3CF206724", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.2\\(2\\):*:*:*:*:*:*:*", "matchCriteriaId": "CFA73BA5-D1C5-4561-86F1-5B37C64374E1", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.3:*:*:*:*:*:*:*", "matchCriteriaId": "CDEA2295-5B38-45BC-9099-5A448482FB59", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "4AFE6E41-E5C3-48AA-A534-A1AF3E86E3F0", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3\\(1\\):*:*:*:*:*:*:*", "matchCriteriaId": "31BA0ED9-6962-4E19-89A1-1724AADEC669", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:asa_5500:*:*:*:*:*:*:*:*", "matchCriteriaId": "6FCBA3A3-7C8F-481A-9BEC-78981547F8BE", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:asa_5505:*:*:*:*:*:*:*:*", "matchCriteriaId": "46FB0E87-E81A-4DF8-8A01-0D0727949D87", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:asa_5510:*:*:*:*:*:*:*:*", "matchCriteriaId": "CCFC8F36-ABFD-429F-AC2C-60BB481EECB9", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:asa_5520:*:*:*:*:*:*:*:*", "matchCriteriaId": "1BBFC985-514D-477B-B881-BB8ABEDFA59B", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:asa_5540:*:*:*:*:*:*:*:*", "matchCriteriaId": "193CF237-BBE5-4016-8167-24808FA52CBD", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:asa_5550:*:*:*:*:*:*:*:*", "matchCriteriaId": "427C9F27-ACE4-416B-9723-2AEECF9AB9CF", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:asa_5580:*:*:*:*:*:*:*:*", "matchCriteriaId": "9A5F5BF0-E96E-4FD3-B210-1E0F96AF4249", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:pix_500:*:*:*:*:*:*:*:*", "matchCriteriaId": "2706D3BA-37A2-4D71-94DD-5386F5C94374", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:pix_501:*:*:*:*:*:*:*:*", "matchCriteriaId": "01B0A1E7-F882-4FD8-811A-3D6D0A9FC938", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:pix_506e:*:*:*:*:*:*:*:*", "matchCriteriaId": "2F353E8D-FE19-4683-BD35-FFBF503C45DE", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:pix_firewall_506:*:*:*:*:*:*:*:*", "matchCriteriaId": "E346F334-9BA3-4BDC-8D0F-D749A7D76E66", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:pix_firewall_515:*:*:*:*:*:*:*:*", "matchCriteriaId": "F6EE5C14-F556-48A5-BB3F-5465DC823B85", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:pix_firewall_520:*:*:*:*:*:*:*:*", "matchCriteriaId": "32E437F4-1B19-4B57-9EAD-3AC04717E389", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:pix_firewall_525:*:*:*:*:*:*:*:*", "matchCriteriaId": "29B2019F-DF6E-4924-B0D2-37094B5265F9", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:pix_firewall_535:*:*:*:*:*:*:*:*", "matchCriteriaId": "9600B7CF-4AEB-4319-8EF4-4FEA40EF6367", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.23), 8.1 before 8.1(2.49), 8.2 before 8.2(4.1), and 8.3 before 8.3(2.13), when a Certificate Authority (CA) is configured, allow remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCtk12352."}, {"lang": "es", "value": "Dispositivos de la serie Cisco Adaptive Security Appliances (ASA) 5500 con el software v8.0 anterior a v8.0 (5.23), v8.1 anterior a v8.1 (2.49), v8.2 anterior a v8.2 (4.1), y v8.3 anterior a v8.3 (2.13), cuando una entidad emisora de certificados (CA) est\u00e1 configurada, permite a atacantes remotos leer archivos arbitrarios a trav\u00e9s de vectores no especificados, tambi\u00e9n conocido como error ID CSCtk12352"}], "id": "CVE-2011-0396", "lastModified": "2024-11-21T01:23:52.907", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 7.8, "confidentialityImpact": "COMPLETE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-02-25T12:00:19.307", "references": [{"source": "ykramarz@cisco.com", "url": "http://secunia.com/advisories/43488"}, {"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14d.shtml"}, {"source": "ykramarz@cisco.com", "url": "http://www.securitytracker.com/id?1025108"}, {"source": "ykramarz@cisco.com", "url": "http://www.vupen.com/english/advisories/2011/0493"}, {"source": "ykramarz@cisco.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65591"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/43488"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14d.shtml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id?1025108"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2011/0493"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65591"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}