2 matches found
CVE-2022-20759
A vulnerability in the web services interface for remote access VPN features of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an authenticated, but unprivileged, remote attacker to elevate privileges to level 15. This vulnerability is d...
CVE-2022-20759
Cisco ASA and Firepower Threat Defense (FTD) web services interface for remote access VPN features contains a privilege-escalation flaw due to improper separation of authentication and authorization scopes. An authenticated but unprivileged remote attacker can send crafted HTTPS requests to the w...