Cisco ASA FirePOWER Services Multiple Vulnerabilities in Wi-Fi Protected Access and Wi-Fi Protected Access II (KRACK)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote device is missing a vendor-supplied security patch.

Description :

According to its self-reported version, the Cisco ASA with FirePOWER
Services is affected by multiple vulnerabilities related to the KRACK
attack. Please see the included Cisco BIDs and the Cisco Security
Advisory for more information.

See also :

http://www.nessus.org/u?deb024bb
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg10793
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg10793
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg10793
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg10793
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg10793
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg10793
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg10793
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg10793
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg10793
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg10793

Solution :

Upgrade to the relevant fixed version referenced in Cisco bug ID(s)
CSCvg10793 CSCvg10793 CSCvg10793 CSCvg10793 CSCvg10793 CSCvg10793 CSCvg10793 CSCvg10793 CSCvg10793 CSCvg10793.

Risk factor :

High / CVSS Base Score : 8.3
(CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.9
(CVSS2#E:F/RL:U/RC:ND)
Public Exploit Available : true

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now