nvd-json-data-feeds/CVE-2020/CVE-2020-32xx/CVE-2020-3259.json

{
  "id": "CVE-2020-3259",
  "sourceIdentifier": "ykramarz@cisco.com",
  "published": "2020-05-06T17:15:12.777",
  "lastModified": "2024-02-16T02:00:03.227",
  "vulnStatus": "Analyzed",
  "cisaExploitAdd": "2024-02-15",
  "cisaActionDue": "2024-03-07",
  "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
  "cisaVulnerabilityName": "Cisco ASA and FTD Information Disclosure Vulnerability",
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to retrieve memory contents on an affected device, which could lead to the disclosure of confidential information. The vulnerability is due to a buffer tracking issue when the software parses invalid URLs that are requested from the web services interface. An attacker could exploit this vulnerability by sending a crafted GET request to the web services interface. A successful exploit could allow the attacker to retrieve memory contents, which could lead to the disclosure of confidential information. Note: This vulnerability affects only specific AnyConnect and WebVPN configurations. For more information, see the Vulnerable Products section."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en la interfaz de servicios web del Cisco Adaptive Security Appliance (ASA) Software y el Cisco Firepower Threat Defense (FTD) Software, podr\u00eda permitir a un atacante remoto no autenticado recuperar contenido de la memoria sobre un dispositivo afectado, lo que podr\u00eda conducir a la divulgaci\u00f3n de informaci\u00f3n confidencial . La vulnerabilidad es debido a un problema de rastreo del b\u00fafer cuando el software analiza las URL no v\u00e1lidas que son solicitadas desde la interfaz de servicios web. Un atacante podr\u00eda explotar esta vulnerabilidad mediante el env\u00edo de una petici\u00f3n GET dise\u00f1ada hacia la interfaz de servicios web. Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir a un atacante recuperar el contenido de la memoria, lo que podr\u00eda conllevar a la divulgaci\u00f3n de informaci\u00f3n confidencial. Nota: Esta vulnerabilidad solo afecta a configuraciones espec\u00edficas de AnyConnect y WebVPN. Para m\u00e1s informaci\u00f3n, consulte la secci\u00f3n Vulnerable Products."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 7.5,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6
      }
    ],
    "cvssMetricV30": [
      {
        "source": "ykramarz@cisco.com",
        "type": "Secondary",
        "cvssData": {
          "version": "3.0",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 7.5,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6
      }
    ],
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "NONE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ]
    },
    {
      "source": "ykramarz@cisco.com",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-200"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "6.2.3",
              "versionEndExcluding": "6.2.3.16",
              "matchCriteriaId": "C4B2E5D3-ED34-4A7E-BD8F-8492B6737677"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "6.3.0",
              "versionEndExcluding": "6.3.0.6",
              "matchCriteriaId": "9D27DE97-510A-4761-8184-6940745B54E2"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "6.4.0",
              "versionEndExcluding": "6.4.0.9",
              "matchCriteriaId": "06741056-2BFD-4F88-917A-F581F813B69E"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "6.5.0",
              "versionEndExcluding": "6.5.0.5",
              "matchCriteriaId": "3ED0E59C-146C-494F-AD46-F6FB43F9C575"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "9.8",
              "versionEndExcluding": "9.8.4.20",
              "matchCriteriaId": "CEB1AF51-43DA-4399-8264-E0A2E629F799"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "9.9",
              "versionEndExcluding": "9.9.2.67",
              "matchCriteriaId": "2CA468F1-6A40-42FB-82D6-98AE314712A3"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "9.10",
              "versionEndExcluding": "9.10.1.40",
              "matchCriteriaId": "8CCF1EAA-45F3-4155-B8DA-F34213C911F7"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "9.12",
              "versionEndExcluding": "9.12.3.9",
              "matchCriteriaId": "A2380A3F-D64E-4DB2-95AB-783E83DA7E51"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "9.13",
              "versionEndExcluding": "9.13.1.10",
              "matchCriteriaId": "526A1138-61C7-44AD-A925-B38BDB353238"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-info-disclose-9eJtycMB",
      "source": "ykramarz@cisco.com",
      "tags": [
        "Vendor Advisory"
      ]
    }
  ]
}