1. Home
  2. CVE Database
  3. CVE-2008-2736
HIGH · 7.1

CVE-2008-2736

Unspecified vulnerability in Cisco Adaptive Security Appliance (ASA) 5500 devices 8.0(3)15, 8.0(3)16, 8.1(1)4, and 8.1(1)5, when configured as a clientless SSL VPN endpoint, allows remote attackers to...

Vulnerability Description

Unspecified vulnerability in Cisco Adaptive Security Appliance (ASA) 5500 devices 8.0(3)15, 8.0(3)16, 8.1(1)4, and 8.1(1)5, when configured as a clientless SSL VPN endpoint, allows remote attackers to obtain usernames and passwords via unknown vectors, aka Bug ID CSCsq45636.

CVSS Score

7.1

HIGH

AV:N/AC:M/Au:N/C:C/I:N/A:N
Confidentiality
COMPLETE
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
CiscoAdaptive Security Appliance 55008.0

Related Weaknesses (CWE)

CWE-200

References

FAQ

What is CVE-2008-2736?

CVE-2008-2736 is a vulnerability with a CVSS score of 7.1 (HIGH). Unspecified vulnerability in Cisco Adaptive Security Appliance (ASA) 5500 devices 8.0(3)15, 8.0(3)16, 8.1(1)4, and 8.1(1)5, when configured as a clientless SSL VPN endpoint, allows remote attackers to...

How severe is CVE-2008-2736?

CVE-2008-2736 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-2736?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Adaptive Security Appliance 5500.