SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its banner, the version of the Cisco ASA software on the remote device is affected by an information disclosure vulnerability in the SSL VPN feature. By requesting a specific URL, a remote attacker can exploit this vulnerability to obtain software version information which could be used for reconnaissance attacks.
Note that the SSL VPN feature must be enabled for the device to be affected by this vulnerability.
SolutionApply the relevant patch referenced in Cisco bug ID CSCuq65542.