Volerion logoVolerion
Volerion logoVolerion

Cisco Secure Firewall ASA and FTD Software Remote Access SSL VPN Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in the Remote Access SSL VPN feature of Cisco Secure Firewall ASA Software and Secure FTD Software. This vulnerability allows an unauthenticated, remote attacker to cause the device to reload unexpectedly, leading to a denial-of-service condition. The issue arises from insufficient error checking when processing SAML messages, which could be exploited by sending crafted SAML messages to the SAML service.

Impact

Exploitation of this vulnerability causes the device to reload unexpectedly, creating a denial-of-service condition that may require a manual reboot.

Remediation

Cisco has released software updates to address this vulnerability. Instructions for upgrading Cisco Secure FTD devices are available in the Cisco Secure FMC upgrade guide. For Cisco Secure Firewall ASA, consult the Cisco Secure Firewall ASA Upgrade Guide and use the Cisco Software Checker to determine the best release.

Added: Mar 4, 2026, 6:36 PM
Updated: Mar 4, 2026, 6:36 PM

Vulnerability Rating

Custom Algorithm
spread
6.8
impact
2.5
exploitability
7.8
remediation
7.7
relevance
3.5
threat
0.0
urgency
2.9
incentive
8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.