https://community.cisco.com/t5/network-security/cisco-asa-vulnerable/m-p/5081820#M1111805 <P>There really is not much you can do with that hardware.&nbsp; The last supported version for ASA5505 is 7.0.4.&nbsp; To protect yourself against the recent vulnerabilities you would need to upgrade your hardware and then install the latest fixed version of ASA or FTD (depending on which you go for.)</P> Mon, 29 Apr 2024 09:11:27 GMT Marius Gunnerud 2024-04-29T09:11:27Z https://community.cisco.com/t5/network-security/cisco-asa-vulnerable/m-p/5081115#M1111761 <P>Hi, im running a Cisco ASA 5505 with 9.1(2) with Anyconnect enabled. I read that there are some vulnerabilities on this device. Am i affected or any recommendations on what i should do?</P> Sun, 28 Apr 2024 14:58:58 GMT https://community.cisco.com/t5/network-security/cisco-asa-vulnerable/m-p/5081115#M1111761 Cisco SE 2024-04-28T14:58:58Z https://community.cisco.com/t5/network-security/cisco-asa-vulnerable/m-p/5081118#M1111763 <P><A href="https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-threat-defense/221806-password-spray-attacks-impacting-custome.html" target="_blank">https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-threat-defense/221806-password-spray-attacks-impacting-custome.html</A></P> <P>check this</P> <P>MHM</P> Sun, 28 Apr 2024 15:08:55 GMT https://community.cisco.com/t5/network-security/cisco-asa-vulnerable/m-p/5081118#M1111763 MHM Cisco World 2024-04-28T15:08:55Z https://community.cisco.com/t5/network-security/cisco-asa-vulnerable/m-p/5081471#M1111788 <P><A href="https://sec.cloudapps.cisco.com/security/center/resources/asa_ftd_attacks_event_response" target="_self">Cisco Event Response: Attacks Against Cisco Firewall Platforms</A></P> <P class="lia-indent-padding-left-30px">1.&nbsp;&nbsp;<A href="https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-websrvs-dos-X8gNucD2" target="_self">Cisco Adaptive Security Appliance and Firepower Threat Defense Software Web Services Denial of Service Vulnerability</A></P> <P class="lia-indent-padding-left-30px">2.&nbsp;&nbsp;<A href="https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-persist-rce-FLsNXF4h" target="_self">Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution Vulnerability</A></P> <P>#1 &amp; #2 are currently being actively exploited in the wild.&nbsp;&nbsp;</P> <BLOCKQUOTE> <DIV class="hbuttonelement"><STRONG>Exploitation and Public Announcements</STRONG></DIV> <P><LI-WRAPPER></LI-WRAPPER></P> <DIV id="exploitfield" class="ud-innercontent-area"> <P class="lia-indent-padding-left-30px">Cisco has confirmed that this vulnerability has been exploited. Cisco strongly recommends that customers upgrade to fixed software to resolve this vulnerability. Customers are also strongly encouraged to monitor system logs for indicators of undocumented configuration changes, unscheduled reboots, and any anomalous credential activity.</P> </DIV> <HR /></BLOCKQUOTE> <P><SPAN>Further reading:</SPAN></P> <UL> <LI><A href="https://www.cisa.gov/news-events/alerts/2024/04/24/cisa-adds-three-known-exploited-vulnerabilities-catalog" target="_self"><SPAN>CISA Adds Three Known Exploited Vulnerabilities to Catalog</SPAN></A></LI> <LI><A href="https://blog.talosintelligence.com/arcanedoor-new-espionage-focused-campaign-found-targeting-perimeter-network-devices/" target="_self">ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices</A></LI> </UL> Mon, 29 Apr 2024 01:19:46 GMT https://community.cisco.com/t5/network-security/cisco-asa-vulnerable/m-p/5081471#M1111788 Leo Laohoo 2024-04-29T01:19:46Z https://community.cisco.com/t5/network-security/cisco-asa-vulnerable/m-p/5081820#M1111805 <P>There really is not much you can do with that hardware.&nbsp; The last supported version for ASA5505 is 7.0.4.&nbsp; To protect yourself against the recent vulnerabilities you would need to upgrade your hardware and then install the latest fixed version of ASA or FTD (depending on which you go for.)</P> Mon, 29 Apr 2024 09:11:27 GMT https://community.cisco.com/t5/network-security/cisco-asa-vulnerable/m-p/5081820#M1111805 Marius Gunnerud 2024-04-29T09:11:27Z https://community.cisco.com/t5/network-security/cisco-asa-vulnerable/m-p/5087397#M1112012 <P>Seriously ?</P><P>There is so much CVE issue applicable to such an old ASA version ! It is a crazy situation.</P><P>I don't know what you expect to protect with that but if it is exposed to Internet, I guess it might be already compromised. As <a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/319690">@Marius Gunnerud</a> said, just upgrade to a supported hardware and a supported code.</P><P>Good luck.</P> Thu, 02 May 2024 09:28:21 GMT https://community.cisco.com/t5/network-security/cisco-asa-vulnerable/m-p/5087397#M1112012 Jerome BERTHIER 2024-05-02T09:28:21Z