CVE-2026-20015
CVE-2026-20015
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device that may impact the availability of services to devices elsewhere in the network.
This vulnerability is due to a memory leak when parsing IKEv2 packets. An attacker could exploit this vulnerability by sending crafted IKEv2 packets to an affected device. A successful exploit could allow the attacker to exhaust resources, causing a DoS condition that will eventually require the device to be manually reloaded.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
Produtos afetados
Cisco · Cisco Secure Firewall Adaptive Security Appliance (ASA) SoftwareCisco · Cisco Secure Firewall Threat Defense (FTD) SoftwareQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →