Vulnslist

find the latest Cisco vulnerabilities

CVE-2026-20006

A vulnerability in the TLS cryptography functionality of the Snort 3 Detection Engine of Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to unexpectedly restart, resulting in a denial of service (DoS) condition. This vulnerability is due to improper implementation of the TLS protocol. An attacker could exploit this vulnerability by sending a crafted TLS packet to an affected system. A successful exploit could allow the attacker to cause a device that is running Cisco Secure FTD Software to drop network traffic, resulting in a DoS condition.  Note: TLS 1.3 is not affected by this vulnerability.

SeverityMEDIUM
CVSS5.8
CWECWE-388
KEV
Published
Modified

Related Products

Product Advisory
Cisco Secure Firewall Management Center (FMC) cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco RV Series Routers cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Nexus Dashboard cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Firepower Threat Defense Software cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Catalyst PON Series Switches cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco 3000 Series Routers cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Secure Firewall Threat Defense Virtual cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Secure Firewall Threat Defense (FTD) Software cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Secure Firewall 4200 Series cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Secure Firewall 3100 Series cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Secure Firewall 1200 Series cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Firepower 9000 Series cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Firepower 4100 Series cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Firepower 2100 Series cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco Firepower 1000 Series cisco-sa-ftd-tcp-dos-rHfqnwRg
Cisco 3000 Series Industrial Security Appliances (ISA) cisco-sa-ftd-tcp-dos-rHfqnwRg