VULHUB ™

Cisco ASA Software Release 9.7.1及之后版本和Cisco FTD Software Release 6.2.1及之后版本中的Security Assertion Markup Language (SAML) 2.0 Single Sign-On (SSO) for Clientless SSL VPN (WebVPN)和AnyConnect Remote Access VPN的实现存在信任管理问题漏洞。该漏洞源于网络系统或产品中缺乏有效的信任管理机制。攻击者可利用默认密码或者硬编码密码、硬编码证书等攻击受影响组件。以下产品及版本受到影响：Cisco 3000 Series Industrial Security Appliances；Adaptive Security Appliance (ASA) 5500-X Series Firewalls；ASA Services Module for Cisco Catalyst 6500 Series Switches和Cisco 7600 Series Routers；Adaptive Security Virtual Appliance (ASAv)；Firepower 2100 Series；Firepower 4100 Series；Firepower 9300 Security Appliances；Firepower Threat Defense Virtual。

Cisco ASA Software Release 9.7.1及之后版本和Cisco FTD Software Release 6.2.1及之后版本中的Security Assertion Markup Language (SAML) 2.0 Single Sign-On (SSO) for Clientless SSL VPN (WebVPN)和AnyConnect Remote Access VPN的实现存在信任管理问题漏洞。该漏洞源于网络系统或产品中缺乏有效的信任管理机制。攻击者可利用默认密码或者硬编码密码、硬编码证书等攻击受影响组件。以下产品及版本受到影响：Cisco 3000 Series Industrial Security Appliances；Adaptive Security Appliance (ASA) 5500-X Series Firewalls；ASA Services Module for Cisco Catalyst 6500 Series Switches和Cisco 7600 Series Routers；Adaptive Security Virtual Appliance (ASAv)；Firepower 2100 Series；Firepower 4100 Series；Firepower 9300 Security Appliances；Firepower Threat Defense Virtual。