Vulnslist

find the latest Cisco vulnerabilities

CVE-2024-20493

A vulnerability in the login authentication functionality of the Remote Access SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to deny further VPN user authentications for several minutes, resulting in a temporary denial of service (DoS) condition. This vulnerability is due to ineffective handling of memory resources during the authentication process. An attacker could exploit this vulnerability by sending crafted packets, which could cause resource exhaustion of the authentication process. A successful exploit could allow the attacker to deny authentication for Remote Access SSL VPN users for several minutes, resulting in a temporary DoS condition.

SeverityMEDIUM
CVSS5.3
CWECWE-772
KEV
Published
Modified

Related Products

Product Advisory Evidence
Cisco Secure Firewall Threat Defense Virtual cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco Secure Firewall Threat Defense (FTD) Software cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco Secure Firewall 4200 Series cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco Secure Firewall 3100 Series cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco Firepower 9000 Series cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco Firepower 4100 Series cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco Firepower 2100 Series cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco Firepower 1000 Series cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco Adaptive Security Virtual Appliance (ASAv) cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco Adaptive Security Appliance (ASA) Software cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco ASA 5500-X Series Firewalls cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln
Cisco 3000 Series Industrial Security Appliances (ISA) cisco-sa-asa-vpn-4gYEWMKg Cisco OpenVuln