Buffer overflow in the IKEv1 and IKEv2 implementations in Cisco ASA Software before 8.4(7.30), 8.7 before 8.7(1.18), 9.0 before 9.0(4.38), 9.1 before 9.1(7), 9.2 before 9.2(4.5), 9.3 before 9.3(3.7),. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 89.8%.
Denial Of Service
Cisco
Buffer Overflow
RCE
Adaptive Security Appliance Software
NVD
Exploit-DB
CVSS 3.0
9.8
EPSS
89.8%
Threat
6.2