CVE-2018-0229 flaw in SAML implementation threatens Firepower, AnyConnect and ASA products

CVE-2018-0229 flaw in SAML implementation threatens Firepower, AnyConnect and ASA products Cisco has announced a set of security patches that address the CVE-2018-0229 vulnerability in its implementation of the Security Assertion Markup Language (SAML). The CVE-2018-0229 flaw could be exploited by an unauthenticated, remote attacker to establish an authenticated AnyConnect session through an affected device running ASA or FTD Software. “A vulnerability in the implementation of Security […] The post CVE-2018-0229 flaw in SAML implementation threatens Firepower, AnyConnect and ASA products appeared first on Security Affairs. Read More At -> https://blog.cripperz.sg/2018/04/23/cve-2018-0229-flaw-in-saml-implementation-threatens-firepower-anyconnect-and-asa-products/