Summary
Cisco has released security patches for their ASA (Adaptive Security Appliance) and FTD (Firepower Threat Defense) Software for Firepower 2100 Series vulnerability. CVE-2023-20006 allows an unauthenticated remote attacker to reload the affected devices to reload, this results in a denial of service (DoS).
This vulnerability is possible because of an implementation error in the cryptographic functions for SSL/TLS traffic that are send to the hardware to offload. An attacker could create a custom stream of SSL/TLS traffic which results in a error on the hardware-based cryptography engine.
Affected Products
• ASA version: 9.16.4, 9.18.2, 9.18.2.5
• FTD: 7.2.1, 7.2.2, 7.2.3
Security Updates
Cisco has released security updates to resolve this vulnerability by upgrading to the newest version.
More information can be found here.