Home > Security Bulletins > Cisco ASA and FTD CVE-2023-20006

Cisco ASA and FTD CVE-2023-20006

Cisco ASA and FTD CVE-2023-20006

detect and respond investigate magnifying glass

Summary

Cisco has released security patches for their ASA (Adaptive Security Appliance) and FTD (Firepower Threat Defense) Software for Firepower 2100 Series vulnerability. CVE-2023-20006 allows an unauthenticated remote attacker to reload the affected devices to reload, this results in a denial of service (DoS).
This vulnerability is possible because of an implementation error in the cryptographic functions for SSL/TLS traffic that are send to the hardware to offload. An attacker could create a custom stream of SSL/TLS traffic which results in a error on the hardware-based cryptography engine.

Affected Products
• ASA version: 9.16.4, 9.18.2, 9.18.2.5
• FTD: 7.2.1, 7.2.2, 7.2.3

Security Updates
Cisco has released security updates to resolve this vulnerability by upgrading to the newest version.
More information can be found here.