Cisco Secure Firewall Adaptive Security Appliance
Moderate fix1 remedy
cpe:2.3:h:cisco:5500_series_adaptive_security_appliance:*:*:*:*:*:*:*, +11 more
Moderate fix1 remedy
- <= 9.15
Cisco Secure Firewall ASA and FTD Software SSL/TLS Certificate Denial-of-Service Vulnerability
Vulnerability
Patched
A denial-of-service vulnerability has been identified in Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software). This vulnerability allows an unauthenticated, remote attacker to cause the device to reload unexpectedly, leading to a DoS condition. The issue arises from improper parsing of SSL/TLS certificates. An attacker could exploit this vulnerability by sending a crafted SSL/TLS certificate to an affected system through a listening SSL/TLS socket.
Impact
Exploitation of this vulnerability causes the device to reload unexpectedly, creating a denial-of-service condition.
Remediation
Cisco has released free software updates that address this vulnerability. Customers with service contracts should obtain these security fixes through their usual update channels. For instructions on upgrading a Cisco Secure FTD device, consult the appropriate Cisco Secure FMC upgrade guide.
Added: Aug 14, 2025, 6:37 PM
Updated: Aug 14, 2025, 6:37 PM
Vulnerability Rating
Custom Algorithm
spread
6.8impact
2.5exploitability
7.0remediation
7.7relevance
0.3threat
0.0urgency
2.9incentive
5.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.