HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2024-20268

CVSS 7.7v3.1pub. 2024-10-23upd. 2025-08-01

A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause an unexpected reload of the device. This vulnerability is due to insufficient input validation of SNMP packets. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device using IPv4 or IPv6. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. This vulnerability affects all versions of SNMP (versions 1, 2c, and 3) and requires a valid SNMP community string or valid SNMPv3 user credentials.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
  • Cisco Adaptive Security Appliance Software

    OS
    Cisco
    9.14.19.14.1.109.14.1.159.14.1.199.14.1.309.14.1.69.14.29.14.2.139.14.2.159.14.2.49.14.2.89.14.39.14.3.19.14.3.119.14.3.13+ 82 więcej
  • Cisco Firepower Threat Defense

    APP
    Cisco
    6.6.06.6.0.16.6.1
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2025-20333CRITICAL9.9⚠ KEVPL ✓ten sam produkt

RCE jako root w Cisco ASA i FTD poprzez podatny serwer VPN web

CVE-2025-20363CRITICAL9.0PL ✓ten sam produkt

RCE w web services Cisco ASA, FTD, IOS, IOS XE, IOS XR przez HTTP

CVE-2024-20329CRITICAL9.9PL ✓ten sam produkt

RCE w podsystemie SSH Cisco ASA — wykonanie poleceń jako root

CVE-2024-20412CRITICAL9.3PL ✓ten sam produkt

Cisco FTD: statyczne konta z zakodowanymi hasłami umożliwiają nieautoryzowany dostęp

CVE-2020-3125CRITICAL9.8ten sam produkt

A vulnerability in the Kerberos authentication feature of Cisco Adaptive Security Appliance (ASA) Software cou...