Cisco Secure Firewall ASA and FTD Software Remote Access SSL VPN Denial-of-Service Vulnerability

A denial-of-service vulnerability has been identified in the Remote Access SSL VPN feature of Cisco Secure Firewall ASA Software and Secure FTD Software. This vulnerability allows an unauthenticated, remote attacker to cause the device to stop responding to VPN authentication requests, creating a DoS condition. The issue arises from improper validation of user-supplied input during the authentication process, which could be exploited by sending crafted requests to the VPN service on the affected device.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the device to stop responding to Remote Access SSL VPN authentication requests.

Remediation

Cisco has released software updates that address this vulnerability. Customers with service contracts should obtain these updates through their usual channels. For instructions on upgrading Cisco Secure FTD Software, refer to the Cisco Secure FMC upgrade guide.