Main Vulnerability Database SB2021102809

SB2021102809 - Security restrictions bypass in Cisco Adaptive Security Appliance and Firepower Threat Defense

Published: October 28, 2021

Security Bulletin ID SB2021102809

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2021-34787)

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists in the identity-based firewall (IDFW) rule processing feature. A remote attacker can send a specially crafted network request to bypass access control list (ACL) rules on the device, bypass security protections, and send network traffic to unauthorized hosts.

Remediation

Install update from vendor's website.

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-rule-bypass-ejjOgQEY
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx47895