A remote code execution (RCE) vulnerability in the Cisco Adaptive Security Device Manager (ASDM) Launcher disclosed in July has yet to be addressed. Cisco confirmed that it plans to address this vulnerability and that there are no workarounds that fix the issue. The IT giant is not aware of the public availability of proof-of-concept exploits for this flaw or attacks exploiting it in the wild. The vulnerability affects Ciscos software versions from releases 9.16.1 and earlier.”]
Source: https://securityaffairs.co/wordpress/120923/breaking-news/zero-day-rce-cisco-asdm.html