Lucene search
K

398 matches found

Cvelist
Cvelist
added 2026/03/04 5:19 p.m.27 views

CVE-2026-20105

A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Security Appliance ASA Software and Secure Firewall Threat Defense FTD Software could allow an authenticated, remote attacker with a valid VPN connection to exhaust device memory resulting in a denial of...

7.7CVSS0.00316EPSS
Exploits0References1
CVE
CVE
added 2026/03/04 5:19 p.m.15 views

CVE-2026-20105

CVE-2026-20105 affects Cisco Secure Firewall ASA and Secure Firewall Threat Defense (FTD) software, where the Remote Access SSL VPN component may exhaust device memory via crafted packets, causing a reload and DoS. The issue arises from trusting user input without validation. An authenticated rem...

7.7CVSS6AI score0.00316EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/04 5:19 p.m.4 views

CVE-2026-20101

A vulnerability in the SAML 2.0 single sign-on SSO feature of Cisco Secure Firewall ASA Software and Secure FTD Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerability is due to insufficient error checki...

8.6CVSS6AI score0.00354EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2026/03/04 5:19 p.m.2 views

CVE-2026-20101

A vulnerability in the SAML 2.0 single sign-on SSO feature of Cisco Secure Firewall ASA Software and Secure FTD Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerability is due to insufficient error checki...

8.6CVSS6AI score0.00354EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/04 5:19 p.m.24 views

CVE-2026-20101

A vulnerability in the SAML 2.0 single sign-on SSO feature of Cisco Secure Firewall ASA Software and Secure FTD Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerability is due to insufficient error checki...

8.6CVSS0.00354EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/04 5:17 p.m.4 views

CVE-2026-20131 Cisco Secure Firewall Management Center Software Remote Code Execution Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root on an affected device. This vulnerability is due to insecure deserialization of a user-supplied Java...

10CVSS6.6AI score0.27551EPSS
Exploits4References1
Cvelist
Cvelist
added 2026/03/04 5:17 p.m.34 views

CVE-2026-20131 Cisco Secure Firewall Management Center Software Remote Code Execution Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root on an affected device. This vulnerability is due to insecure deserialization of a user-supplied Java...

10CVSS0.27551EPSS
Exploits4References1
ATTACKERKB
ATTACKERKB
added 2026/03/04 5:17 p.m.5 views

CVE-2026-20039

A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due...

8.6CVSS6AI score0.00358EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2026/03/04 5:17 p.m.27 views

CVE-2026-20044 Cisco Secure Firewall Management Center Command Injection Vulnerability

A vulnerability in the lockdown mechanism of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, local attacker to perform arbitrary commands as root. This vulnerability is due to insufficient restrictions on remediation modules while in lockdown mode. An attacker...

6CVSS0.00138EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/04 5:17 p.m.2 views

CVE-2026-20079

A vulnerability in the web interface of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to bypass authentication and execute script files on an affected device to obtain root access to the underlying operating system. This vulnerability is due ...

10CVSS6.1AI score0.33898EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2026/03/04 5:17 p.m.11 views

CVE-2026-20079

A vulnerability in the web interface of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to bypass authentication and execute script files on an affected device to obtain root access to the underlying operating system. This vulnerability is due ...

10CVSS6.1AI score0.33898EPSS
Exploits2References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/04 5:7 p.m.4 views

CVE-2026-20008 Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Lua Code Injection Vulnerability

A vulnerability in a small subset of CLI commands that are used on Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an authenticated, local attacker to craft Lua code that could be used on the underlying operating...

6CVSS6.6AI score0.00132EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/04 5:7 p.m.2 views

CVE-2026-20008

A vulnerability in a small subset of CLI commands that are used on Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an authenticated, local attacker to craft Lua code that could be used on the underlying operating...

6CVSS6.6AI score0.00132EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2026/03/04 5:6 p.m.38 views

CVE-2026-20009

The vulnerability CVE-2026-20009 affects Cisco Secure Firewall ASA Software and stems from insufficient validation during SSH authentication in the proprietary SSH stack. An unauthenticated, remote attacker could log in to an ASA device as a specific user without the user’s private key, provided ...

5.3CVSS6.1AI score0.00381EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/04 5:3 p.m.27 views

CVE-2026-20001 Cisco Secure Firewall Management Center Software SQL Injection Vulnerabilities

A vulnerability in the REST API of Cisco Secure FMC Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to inadequate validation of user-supplied input. An attacker could exploit this vulnerability by sending...

6.5CVSS0.00324EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/04 5:3 p.m.3 views

CVE-2026-20001 Cisco Secure Firewall Management Center Software SQL Injection Vulnerabilities

A vulnerability in the REST API of Cisco Secure FMC Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to inadequate validation of user-supplied input. An attacker could exploit this vulnerability by sending...

6.5CVSS6AI score0.00324EPSS
Exploits0References1
Cisco
Cisco
added 2026/03/04 4:0 p.m.10 views

Cisco Secure Firewall Management Center Software Command Injection Vulnerability

A vulnerability in the lockdown mechanism of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, local attacker to perform arbitrary commands as root. This vulnerability is due to insufficient restrictions on remediation modules while in lockdown mode. An attacker...

6CVSS6.2AI score0.00138EPSS
Exploits0References1
Cisco
Cisco
added 2026/03/04 4:0 p.m.15 views

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Remote Access SSL VPN Denial of Service Vulnerabilities

Multiple vulnerabilities in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow a remote attacker to cause an affected device to stop responding or to reload unexpectedly,...

8.6CVSS6AI score0.00354EPSS
Exploits0References1
Cisco
Cisco
added 2026/03/04 4:0 p.m.8 views

Cisco Secure Firewall Adaptive Security Appliance Software SSH Partial Private Key Authentication Bypass Vulnerability

A vulnerability in the implementation of the proprietary SSH stack with SSH key-based authentication in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to log in to a Cisco Secure Firewall ASA device and execute commands as a specific...

5.3CVSS6.1AI score0.00381EPSS
Exploits0References1
Cisco
Cisco
added 2026/03/04 4:0 p.m.11 views

Cisco Secure Firewall Adaptive Security Appliance Software TCP Flood Denial of Service Vulnerability

A vulnerability in the handling of the embryonic connection limits in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to cause incoming TCP SYN packets to be dropped incorrectly. This vulnerability is due to improper handling of new,...

8.6CVSS6AI score0.00412EPSS
Exploits0References1
Rows per page
Query Builder