A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 Single Sign-On (SSO) for Clientless SSL VPN (WebVPN) and AnyConnect Remote Access VPN in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to successfully establish a VPN session to an affected device. The vulnerability is due to improper credential management when using NT LAN Manager (NTLM) or basic authentication. An attacker could exploit this vulnerability by opening a VPN session to an affected device after another VPN user has successfully authenticated to the affected device via SAML SSO. A successful exploit could allow the attacker to connect to secured networks behind the affected device.
History

Tue, 19 Nov 2024 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2019-05-03T16:15:18.833510Z

Updated: 2024-11-19T19:08:27.857Z

Reserved: 2018-12-06T00:00:00

Link: CVE-2019-1714

cve-icon Vulnrichment

Updated: 2024-08-04T18:28:42.818Z

cve-icon NVD

Status : Modified

Published: 2019-05-03T17:29:00.533

Modified: 2024-11-21T04:37:09.697

Link: CVE-2019-1714

cve-icon Redhat

No data.