Vulnerability Description
A vulnerability in the TLS protocol implementation of legacy Cisco ASA 5500 Series (ASA 5505, 5510, 5520, 5540, and 5550) devices could allow an unauthenticated, remote attacker to access sensitive information, aka a Return of Bleichenbacher's Oracle Threat (ROBOT) attack. An attacker could iteratively query a server running a vulnerable TLS stack implementation to perform cryptanalytic operations that may allow decryption of previously captured TLS sessions. Cisco Bug IDs: CSCvg97652.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Adaptive Security Appliance 5505 Firmware | - |
| Cisco | Adaptive Security Appliance 5505 | - |
| Cisco | Adaptive Security Appliance 5510 Firmware | - |
| Cisco | Adaptive Security Appliance 5510 | - |
| Cisco | Adaptive Security Appliance 5520 Firmware | - |
| Cisco | Adaptive Security Appliance 5520 | - |
| Cisco | Adaptive Security Appliance 5540 Firmware | - |
| Cisco | Adaptive Security Appliance 5540 | - |
| Cisco | Adaptive Security Appliance 5550 Firmware | - |
| Cisco | Adaptive Security Appliance 5550 | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/102170Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Issue TrackingMitigationVendor Advisory
- http://www.securityfocus.com/bid/102170Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Issue TrackingMitigationVendor Advisory
FAQ
What is CVE-2017-12373?
CVE-2017-12373 is a vulnerability with a CVSS score of 5.9 (MEDIUM). A vulnerability in the TLS protocol implementation of legacy Cisco ASA 5500 Series (ASA 5505, 5510, 5520, 5540, and 5550) devices could allow an unauthenticated, remote attacker to access sensitive in...
How severe is CVE-2017-12373?
CVE-2017-12373 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-12373?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Adaptive Security Appliance 5505 Firmware, Cisco Adaptive Security Appliance 5505, Cisco Adaptive Security Appliance 5510 Firmware, Cisco Adaptive Security Appliance 5510, Cisco Adaptive Security Appliance 5520 Firmware.