PT-2026-23022

A vulnerability in the CLI of Cisco Secure FTD Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as root. To exploit this vulnerability, the attacker must have valid administrative credentials on an affected device. This...

CVE-2024-20299

A vulnerability in the AnyConnect firewall for Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass a configured access control list ACL and allow traffic that should have been denied to flow throu...

CVE-2024-20268

A vulnerability in the Simple Network Management Protocol SNMP feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an authenticated, remote attacker to cause an unexpected reload of the device. This vulnerability is due to...

The vulnerability of Microprogramming Software in Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) arises due to the lack of measures taken to neutralize special elements used in the operating system commands. This vulnerability allows attackers to execute arbitrary commands with root privileges.

The vulnerability of the microprogramming software used in Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD exists due to the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows an...

The vulnerability of the Snort module of the microprogramming software for Cisco Firepower Threat Defense (FTD) allows a perpetrator to trigger a service failure.

The vulnerability of the Snort module of the Cisco Firepower Threat Defense FTD software involves an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to cause a service failure by triggering a reboot of the Snort intrusion detection system...

The vulnerability of the TCP protocol implementation in microsoftware for Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) allows a perpetrator to trigger a service failure due to uncontrolled resource consumption.

The vulnerability of the TCP protocol implementation in Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD software relates to uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

CVE-2022-20713

A vulnerability in the VPN web client services component of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to conduct browser-based attacks against users of an affected device. This vulnerability is du...

CVE-2022-20866 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software RSA Private Key Leak Vulnerability

A vulnerability in the handling of RSA keys on devices running Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to retrieve an RSA private key. This vulnerability is due to a logic error when the RSA key...

CVE-2022-20748

A vulnerability in the local malware analysis process of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on the affected device. This vulnerability is due to insufficient error handling in the local malware...

The vulnerability of the TCP Normalizer component of the microprogramming software for Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) allows a attacker to cause a service failure.

The vulnerability of the TCP Normalizer component in Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD systems is related to the lack of integrity checking for messages. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending...

The vulnerability of the File Transfer Protocol (FTP) implementation and the NAT functions of the Application Layer Gateway (ALG) in microprogrammable network devices such as Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) allows attackers to circumvent security restrictions and establish unauthorized connections.

The vulnerability of the File Transfer Protocol FTP implementation and the Network Address Translation NAT function of the Application Layer Gateway ALG in microprogrammable network devices such as Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD is related to...

CVE-2021-34755

Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. For more information about these vulnerabilities, see the Details section of this advisory...

The vulnerability of the Clientless SSL VPN (WebVPN) implementation of Cisco Firepower Threat Defense (FTD) and Cisco Adaptive Security Appliance (ASA) allows a attacker to inject arbitrary HTTP headers.

The vulnerability of the Clientless SSL VPN WebVPN implementation of Cisco Firepower Threat Defense FTD and Cisco Adaptive Security Appliance ASA is related to the failure to implement measures to neutralize CRLF sequences. Exploiting this vulnerability allows a malicious actor to inject arbitrar...

The vulnerability of the SSL VPN micro-programming software for network interfaces of Cisco Adaptive Security Appliances and Cisco Firepower Threat Defense allows a attacker to induce a service failure.

The vulnerability of the SSL VPN microprogramming software for Cisco Adaptive Security Appliances and Cisco Firepower Threat Defense relates to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the TCP Intercept function in Cisco Firepower Threat Defense’s microprogramming-based network interface devices allows attackers to compromise the integrity of protected information.

The vulnerability of the TCP Intercept function in Cisco Firepower Threat Defense microprogramming systems is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the protected information...

The vulnerability of the implementation of the OSPFv2 protocol in microprogrammed network interface devices from Cisco Adaptive Security Appliances and Cisco Firepower Threat Defense allows a attacker to induce a service failure.

The vulnerability of the OSPFv2 protocol implementation in Cisco Adaptive Security Appliances and Cisco Firepower Threat Defense software involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

Vulnerabilities fixed in Cisco ASA and FTD

Vulnerabilities have been fixed in Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD. The vulnerabilities allow a malicious party to conduct attacks execute attacks that result in the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS...

The vulnerability of the implementations of Secure Sockets Layer and Transport Layer Security protocols in the microsoftware for Cisco Adaptive Security Appliance (ASA) and Configure Firepower Threat Defense (FTD) allows a attacker to induce a service failure.

The vulnerability of the Secure Sockets Layer and Transport Layer Security implementations in Cisco Adaptive Security Appliance ASA and Configure Firepower Threat Defense FTD software lies in an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to caus...

The vulnerability of the VPN System Logging function in Cisco Firepower Threat Defense’s microprogramming-based network interface devices allows a intruder to trigger a service failure.

The vulnerability of the VPN System Logging function in Cisco Firepower Threat Defense FTD microprogramming systems is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

Cisco Firepower Threat Defense Resource Management Error Vulnerability (CNVD-2020-27772)

Cisco Firepower Threat Defense FTD is a suite of unified software from the U.S. company Cisco Cisco that provides next-generation firewall services. A resource management error vulnerability exists in Cisco FTD versions 6.3.0 and 6.4.0, which stems from a memory handling error when processing GRE...