A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition.
This vulnerability is due to incomplete error checking when parsing an HTTP header. An attacker could exploit this vulnerability by sending a crafted HTTP request to a targeted web server on a device. A successful exploit could allow the attacker to cause a DoS condition when the device reloads.
This vulnerability is due to incomplete error checking when parsing an HTTP header. An attacker could exploit this vulnerability by sending a crafted HTTP request to a targeted web server on a device. A successful exploit could allow the attacker to cause a DoS condition when the device reloads.
Metrics
Affected Vendors & Products
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Tue, 21 Oct 2025 23:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Tue, 21 Oct 2025 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Tue, 21 Oct 2025 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Wed, 30 Jul 2025 02:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Cisco asa
Cisco firepower Threat Defense Software |
|
| CPEs | cpe:2.3:a:cisco:asa:9.12.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.14.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.15.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.16.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.17.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.18.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.19.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.20.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.8.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:6.2.3:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:6.4.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:6.6.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:6.7.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:7.0.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:7.1.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:7.2.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:7.3.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:7.4.0:*:*:*:*:*:*:* |
|
| Vendors & Products |
Cisco asa
Cisco firepower Threat Defense Software |
|
| References |
| |
| Metrics |
ssvc
|
Status: PUBLISHED
Assigner: cisco
Published:
Updated: 2025-10-21T23:05:20.706Z
Reserved: 2023-11-08T15:08:07.647Z
Link: CVE-2024-20353
Updated: 2024-08-01T21:59:41.487Z
Status : Analyzed
Published: 2024-04-24T19:15:46.723
Modified: 2025-10-28T13:59:54.927
Link: CVE-2024-20353
No data.
OpenCVE Enrichment
No data.