CVE-2020-3436 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services File Upload Denial of Service Vulnerability

🗓️ 21 Oct 2020 18:36:24Reported by ciscoType

Vulnerability in Cisco ASA and FTD Software Web Services allows remote file upload leading to Do

Reporter	Title	Published	Views	Family All 13
BDU FSTEC	The vulnerability in the web interface of Cisco Adaptive Security Appliance and Cisco Firepower Threat Defense software allows a perpetrator to trigger a system reboot.	10 Nov 202000:00	–	bdu_fstec
Cisco	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services File Upload Denial of Service Vulnerability	21 Oct 202016:00	–	cisco
Tenable Nessus	Cisco Adaptive Security Appliance Software Web Services File Upload DoS (cisco-sa-asaftd-fileup-dos-zvC7wtys)	19 Aug 202100:00	–	nessus
Tenable Nessus	Cisco Firepower Threat Defense Software Web Services File Upload DoS (cisco-sa-asaftd-fileup-dos-zvC7wtys)	19 Aug 202100:00	–	nessus
CNVD	Cisco Adaptive Security Appliance and Cisco Firepower Threat Defense Denial of Service Vulnerability (CNVD-2021-44682)	4 Nov 202000:00	–	cnvd
CVE	CVE-2020-3436	21 Oct 202018:36	–	cve
EUVD	EUVD-2020-24707	7 Oct 202500:30	–	euvd
NCSC	Vulnerabilities fixed in Cisco ASA and FTD	22 Oct 202000:00	–	ncsc
NVD	CVE-2020-3436	21 Oct 202019:15	–	nvd
OSV	CVE-2020-3436	21 Oct 202019:15	–	osv

[
  {
    "product": "Cisco Adaptive Security Appliance (ASA) Software",
    "vendor": "Cisco",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-fileup-dos-zvC7wtys

21 Oct 2020 18:36Current

8.5High risk

Vulners AI Score8.5

CVSS 38.6

EPSS0.02146

CWE-434