CVE-2014-3394
First published: Fri Oct 10 2014(Updated: )
The Smart Call Home (SCH) implementation in Cisco ASA Software 8.2 before 8.2(5.50), 8.4 before 8.4(7.15), 8.6 before 8.6(1.14), 8.7 before 8.7(1.13), 9.0 before 9.0(4.8), and 9.1 before 9.1(5.1) allows remote attackers to bypass certificate validation via an arbitrary VeriSign certificate, aka Bug ID CSCun10916.
Credit: ykramarz@cisco.com ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Adaptive Security Virtual Appliance | ||
| Cisco Adaptive Security Appliance Software | =8.2.0.45 | |
| Cisco Adaptive Security Appliance Software | =8.2.1 | |
| Cisco Adaptive Security Appliance Software | =8.2.1.1 | |
| Cisco Adaptive Security Appliance Software | =8.2.2 | |
| Cisco Adaptive Security Appliance Software | =8.2.2.10 | |
| Cisco Adaptive Security Appliance Software | =8.2.2.12 | |
| Cisco Adaptive Security Appliance Software | =8.2.2.16 | |
| Cisco Adaptive Security Appliance Software | =8.2.2.17 | |
| Cisco Adaptive Security Appliance Software | =8.2.3 | |
| Cisco Adaptive Security Appliance Software | =8.2.4 | |
| Cisco Adaptive Security Appliance Software | =8.2.4.1 | |
| Cisco Adaptive Security Appliance Software | =8.2.4.4 | |
| Cisco Adaptive Security Appliance Software | =8.2.5 | |
| Cisco Adaptive Security Appliance Software | =8.2.5.13 | |
| Cisco Adaptive Security Appliance Software | =8.2.5.22 | |
| Cisco Adaptive Security Appliance Software | =8.2.5.26 | |
| Cisco Adaptive Security Appliance Software | =8.2.5.33 | |
| Cisco Adaptive Security Appliance Software | =8.2.5.40 | |
| Cisco Adaptive Security Appliance Software | =8.2.5.41 | |
| Cisco Adaptive Security Appliance Software | =8.2.5.46 | |
| Cisco Adaptive Security Appliance Software | =8.2.5.48 | |
| Cisco Adaptive Security Appliance Software | =8.4.1 | |
| Cisco Adaptive Security Appliance Software | =8.4.1.3 | |
| Cisco Adaptive Security Appliance Software | =8.4.1.11 | |
| Cisco Adaptive Security Appliance Software | =8.4.2 | |
| Cisco Adaptive Security Appliance Software | =8.4.2.1 | |
| Cisco Adaptive Security Appliance Software | =8.4.2.8 | |
| Cisco Adaptive Security Appliance Software | =8.4.3 | |
| Cisco Adaptive Security Appliance Software | =8.4.3.8 | |
| Cisco Adaptive Security Appliance Software | =8.4.3.9 | |
| Cisco Adaptive Security Appliance Software | =8.4.4 | |
| Cisco Adaptive Security Appliance Software | =8.4.4.1 | |
| Cisco Adaptive Security Appliance Software | =8.4.4.3 | |
| Cisco Adaptive Security Appliance Software | =8.4.4.5 | |
| Cisco Adaptive Security Appliance Software | =8.4.4.9 | |
| Cisco Adaptive Security Appliance Software | =8.4.5 | |
| Cisco Adaptive Security Appliance Software | =8.4.5.6 | |
| Cisco Adaptive Security Appliance Software | =8.4.6 | |
| Cisco Adaptive Security Appliance Software | =8.4.7 | |
| Cisco Adaptive Security Appliance Software | =8.4.7.3 | |
| Cisco Adaptive Security Appliance Software | =8.6.1 | |
| Cisco Adaptive Security Appliance Software | =8.6.1.1 | |
| Cisco Adaptive Security Appliance Software | =8.6.1.2 | |
| Cisco Adaptive Security Appliance Software | =8.6.1.5 | |
| Cisco Adaptive Security Appliance Software | =8.6.1.10 | |
| Cisco Adaptive Security Appliance Software | =8.6.1.12 | |
| Cisco Adaptive Security Appliance Software | =8.6.1.13 | |
| Cisco Adaptive Security Appliance Software | =8.7.1 | |
| Cisco Adaptive Security Appliance Software | =8.7.1.3 | |
| Cisco Adaptive Security Appliance Software | =8.7.1.4 | |
| Cisco Adaptive Security Appliance Software | =8.7.1.7 | |
| Cisco Adaptive Security Appliance Software | =8.7.1.11 | |
| Cisco Adaptive Security Appliance Software | =9.0.1 | |
| Cisco Adaptive Security Appliance Software | =9.0.2 | |
| Cisco Adaptive Security Appliance Software | =9.0.2.10 | |
| Cisco Adaptive Security Appliance Software | =9.0.3 | |
| Cisco Adaptive Security Appliance Software | =9.0.3.6 | |
| Cisco Adaptive Security Appliance Software | =9.0.3.8 | |
| Cisco Adaptive Security Appliance Software | =9.0.4 | |
| Cisco Adaptive Security Appliance Software | =9.0.4.1 | |
| Cisco Adaptive Security Appliance Software | =9.0.4.5 | |
| Cisco Adaptive Security Appliance Software | =9.0.4.7 | |
| Cisco Adaptive Security Appliance Software | =9.1.1 | |
| Cisco Adaptive Security Appliance Software | =9.1.1.4 | |
| Cisco Adaptive Security Appliance Software | =9.1.2 | |
| Cisco Adaptive Security Appliance Software | =9.1.2.8 | |
| Cisco Adaptive Security Appliance Software | =9.1.3 | |
| Cisco Adaptive Security Appliance Software | =9.1.3.2 | |
| Cisco Adaptive Security Appliance Software | =9.1.4 | |
| Cisco Adaptive Security Appliance Software | =9.1.5 | |
| Cisco ASA 1000V Cloud Firewall | ||
| Cisco ASA 5505 | ||
| Cisco ASA 5512-X firmware | ||
| Cisco ASA 5515-X Firmware | ||
| Cisco ASA 5525-X firmware | ||
| Cisco ASA 5545-X firmware | ||
| Cisco ASA 5555-x firmware | ||
| Cisco ASA 5580 | ||
| Cisco ASA 5585-X |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2014-3394?
CVE-2014-3394 has a medium severity rating, allowing remote attackers to bypass certificate validation.
How do I fix CVE-2014-3394?
To fix CVE-2014-3394, upgrade to Cisco ASA Software versions 8.2(5.50), 8.4(7.15), 8.6(1.14), 8.7(1.13), 9.0(4.8), or 9.1(5.1) or later.
Which Cisco products are affected by CVE-2014-3394?
CVE-2014-3394 affects various versions of Cisco ASA Software prior to specified updates.
What type of vulnerability is CVE-2014-3394?
CVE-2014-3394 is classified as a certificate validation bypass vulnerability.
Can CVE-2014-3394 impact the network security of my Cisco ASA device?
Yes, CVE-2014-3394 can significantly impact network security by allowing unauthorized access through certificate validation bypass.
- agent/author
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- vendor/cisco
- canonical/cisco adaptive security virtual appliance
- canonical/cisco adaptive security appliance software
- version/cisco adaptive security appliance software/8.2.0.45
- version/cisco adaptive security appliance software/8.2.1
- version/cisco adaptive security appliance software/8.2.1.1
- version/cisco adaptive security appliance software/8.2.2
- version/cisco adaptive security appliance software/8.2.2.10
- version/cisco adaptive security appliance software/8.2.2.12
- version/cisco adaptive security appliance software/8.2.2.16
- version/cisco adaptive security appliance software/8.2.2.17
- version/cisco adaptive security appliance software/8.2.3
- version/cisco adaptive security appliance software/8.2.4
- version/cisco adaptive security appliance software/8.2.4.1
- version/cisco adaptive security appliance software/8.2.4.4
- version/cisco adaptive security appliance software/8.2.5
- version/cisco adaptive security appliance software/8.2.5.13
- version/cisco adaptive security appliance software/8.2.5.22
- version/cisco adaptive security appliance software/8.2.5.26
- version/cisco adaptive security appliance software/8.2.5.33
- version/cisco adaptive security appliance software/8.2.5.40
- version/cisco adaptive security appliance software/8.2.5.41
- version/cisco adaptive security appliance software/8.2.5.46
- version/cisco adaptive security appliance software/8.2.5.48
- version/cisco adaptive security appliance software/8.4.1
- version/cisco adaptive security appliance software/8.4.1.3
- version/cisco adaptive security appliance software/8.4.1.11
- version/cisco adaptive security appliance software/8.4.2
- version/cisco adaptive security appliance software/8.4.2.1
- version/cisco adaptive security appliance software/8.4.2.8
- version/cisco adaptive security appliance software/8.4.3
- version/cisco adaptive security appliance software/8.4.3.8
- version/cisco adaptive security appliance software/8.4.3.9
- version/cisco adaptive security appliance software/8.4.4
- version/cisco adaptive security appliance software/8.4.4.1
- version/cisco adaptive security appliance software/8.4.4.3
- version/cisco adaptive security appliance software/8.4.4.5
- version/cisco adaptive security appliance software/8.4.4.9
- version/cisco adaptive security appliance software/8.4.5
- version/cisco adaptive security appliance software/8.4.5.6
- version/cisco adaptive security appliance software/8.4.6
- version/cisco adaptive security appliance software/8.4.7
- version/cisco adaptive security appliance software/8.4.7.3
- version/cisco adaptive security appliance software/8.6.1
- version/cisco adaptive security appliance software/8.6.1.1
- version/cisco adaptive security appliance software/8.6.1.2
- version/cisco adaptive security appliance software/8.6.1.5
- version/cisco adaptive security appliance software/8.6.1.10
- version/cisco adaptive security appliance software/8.6.1.12
- version/cisco adaptive security appliance software/8.6.1.13
- version/cisco adaptive security appliance software/8.7.1
- version/cisco adaptive security appliance software/8.7.1.3
- version/cisco adaptive security appliance software/8.7.1.4
- version/cisco adaptive security appliance software/8.7.1.7
- version/cisco adaptive security appliance software/8.7.1.11
- version/cisco adaptive security appliance software/9.0.1
- version/cisco adaptive security appliance software/9.0.2
- version/cisco adaptive security appliance software/9.0.2.10
- version/cisco adaptive security appliance software/9.0.3
- version/cisco adaptive security appliance software/9.0.3.6
- version/cisco adaptive security appliance software/9.0.3.8
- version/cisco adaptive security appliance software/9.0.4
- version/cisco adaptive security appliance software/9.0.4.1
- version/cisco adaptive security appliance software/9.0.4.5
- version/cisco adaptive security appliance software/9.0.4.7
- version/cisco adaptive security appliance software/9.1.1
- version/cisco adaptive security appliance software/9.1.1.4
- version/cisco adaptive security appliance software/9.1.2
- version/cisco adaptive security appliance software/9.1.2.8
- version/cisco adaptive security appliance software/9.1.3
- version/cisco adaptive security appliance software/9.1.3.2
- version/cisco adaptive security appliance software/9.1.4
- version/cisco adaptive security appliance software/9.1.5
- canonical/cisco asa 1000v cloud firewall
- canonical/cisco asa 5505
- canonical/cisco asa 5512-x firmware
- canonical/cisco asa 5515-x firmware
- canonical/cisco asa 5525-x firmware
- canonical/cisco asa 5545-x firmware
- canonical/cisco asa 5555-x firmware
- canonical/cisco asa 5580
- canonical/cisco asa 5585-x