Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability

This host is running Cisco ASA Software and is prone to buffer overflow vulnerability.

The flaw is due to buffer overflow error in the Internet Key Exchange (IKE) version 1 (v1) and IKE version 2 (v2) code.

Cisco ASA Software versions 7.2.x, 8.0.x, 8.1.x, 8.3.x, 8.6.x before 9.1(6.11), 8.2.x before 8.2(5.59), 8.4.x before 8.4(7.30), 8.7.x before 8.7(1.18), 9.0 before 9.0(4.38), 9.1 before 9.1(6.11), 9.2 before 9.2(4.5), 9.3 before 9.3(3.7), 9.4 before 9.4(2.4), 9.5 before 9.5(2.2) on Cisco ASA 5500 Series Adaptive Security Appliances, Cisco ASA 5500-X Series Next-Generation Firewalls, Cisco ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers, Cisco ASA 1000V Cloud Firewall, Cisco Adaptive Security Virtual Appliance (ASAv), Cisco Firepower 9300 ASA Security Module, Cisco ISA 3000 Industrial Security Appliance.

Checks if a vulnerable version is present on the target host.

Upgrade to 8.4(7.30) or 8.2(5.59) or 8.7(1.18) or 9.0(4.38) or 9.1(6.11) or 9.2(4.5) or 9.3(3.7) or 9.4(2.4) or 9.5(2.2).