Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

CVE-2024-20331

A vulnerability in the session authentication functionality of the Remote Access SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to prevent users from authenticating. This vulnerability is due to insufficient entropy in the authentication process. An attacker could exploit this vulnerability by determining the handle of an authenticating user and using it to terminate their authentication session. A successful exploit could allow the attacker to force a user to restart the authentication process, preventing a legitimate user from establishing remote access VPN sessions.

SeverityMEDIUM
CVSS6.8
CWECWE-330
KEV
Published
Modified

Related Products

Product Advisory Evidence
Cisco Secure Firewall Threat Defense Virtual cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco Secure Firewall Threat Defense (FTD) Software cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco Secure Firewall 4200 Series cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco Secure Firewall 3100 Series cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco Firepower 9000 Series cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco Firepower 4100 Series cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco Firepower 2100 Series cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco Firepower 1000 Series cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco Adaptive Security Virtual Appliance (ASAv) cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco Adaptive Security Appliance (ASA) Software cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco ASA 5500-X Series Firewalls cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln
Cisco 3000 Series Industrial Security Appliances (ISA) cisco-sa-asa-vpn-nyH3fhp Cisco OpenVuln