CVE-2025-20134 Cisco Adaptive Security Appliance and Firepower Threat Defense Software SSL/TLS Certificate Denial of Service Vulnerability

🗓️ 14 Aug 2025 16:28:07Reported by ciscoType

DoS via SSL certificate parsing on Cisco ASA and FTD; unauthenticated attacker can reload device.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2025-20134	14 Aug 202519:17	–	circl
Cisco	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software SSL/TLS Certificate Denial of Service Vulnerability	14 Aug 202516:00	–	cisco
CNNVD	Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 资源管理错误漏洞	14 Aug 202500:00	–	cnnvd
CVE	CVE-2025-20134	14 Aug 202516:28	–	cve
EUVD	EUVD-2025-24856	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Cisco Secure Firewall Software	15 Aug 202508:52	–	ncsc
NVD	CVE-2025-20134	14 Aug 202517:15	–	nvd
Positive Technologies	PT-2025-33313	14 Aug 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-20134	16 Aug 202517:26	–	redhatcve
The Hacker News	Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Execution	15 Aug 202506:49	–	thn

[
  {
    "vendor": "Cisco",
    "product": "Cisco Adaptive Security Appliance (ASA) Software",
    "versions": [
      {
        "version": "9.12.4.39",
        "status": "affected"
      },
      {
        "version": "9.12.4.40",
        "status": "affected"
      },
      {
        "version": "9.14.4.6",
        "status": "affected"
      },
      {
        "version": "9.14.4.7",
        "status": "affected"
      },
      {
        "version": "9.12.4.41",
        "status": "affected"
      },
      {
        "version": "9.12.4.47",
        "status": "affected"
      },
      {
        "version": "9.14.4.12",
        "status": "affected"
      },
      {
        "version": "9.12.4.48",
        "status": "affected"
      },
      {
        "version": "9.14.4.13",
        "status": "affected"
      },
      {
        "version": "9.12.4.50",
        "status": "affected"
      },
      {
        "version": "9.14.4.14",
        "status": "affected"
      },
      {
        "version": "9.12.4.52",
        "status": "affected"
      },
      {
        "version": "9.14.4.15",
        "status": "affected"
      },
      {
        "version": "9.12.4.54",
        "status": "affected"
      },
      {
        "version": "9.14.4.17",
        "status": "affected"
      },
      {
        "version": "9.12.4.55",
        "status": "affected"
      },
      {
        "version": "9.14.4.22",
        "status": "affected"
      },
      {
        "version": "9.14.4.23",
        "status": "affected"
      },
      {
        "version": "9.12.4.56",
        "status": "affected"
      },
      {
        "version": "9.12.4.58",
        "status": "affected"
      },
      {
        "version": "9.12.4.62",
        "status": "affected"
      },
      {
        "version": "9.12.4.65",
        "status": "affected"
      },
      {
        "version": "9.12.4.67",
        "status": "affected"
      },
      {
        "version": "9.14.4.24",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Cisco",
    "product": "Cisco Firepower Threat Defense Software",
    "versions": [
      {
        "version": "6.6.5.2",
        "status": "affected"
      },
      {
        "version": "6.4.0.15",
        "status": "affected"
      },
      {
        "version": "6.6.7",
        "status": "affected"
      },
      {
        "version": "6.4.0.16",
        "status": "affected"
      },
      {
        "version": "6.6.7.1",
        "status": "affected"
      },
      {
        "version": "6.4.0.17",
        "status": "affected"
      },
      {
        "version": "6.6.7.2",
        "status": "affected"
      },
      {
        "version": "6.4.0.18",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
sec	www.sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ssltls-dos-eHw76vZe

19 Aug 2025 21:41Current

CVSS 3.18.6

EPSS0.0013