CVE-2014-2181

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software (affected versions not specified)

Description The issue allows remote authenticated users to read files by sending a crafted URL to the HTTP server, potentially accessing sensitive information such as the running configuration. This is due to a vulnerability in the authorization code of the software, which could enable an authenticated, remote attacker to access information stored on the file system of an affected system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.