This vulnerability is due to incomplete error checking when parsing an HTTP header. An attacker could exploit this vulnerability by sending a crafted HTTP request to a targeted web server on a device. A successful exploit could allow the attacker to cause a DoS condition when the device reloads.
Metrics
No CVSS v4.0
Attack Vector Network
Attack Complexity Low
Privileges Required None
Scope Changed
Confidentiality Impact None
Integrity Impact None
Availability Impact High
User Interaction None
No CVSS v3.0
No CVSS v2
This CVE is in the KEV database since April 24, 2024.
The EPSS score is 0.13803.
Exploitation active
Automatable yes
Technical Impact partial
Affected Vendors & Products
Vendors | Products |
---|---|
Cisco |
|
Configuration 1 [-]
|
Configuration 2 [-]
|
No data.
No data.
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Wed, 30 Jul 2025 02:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Cisco asa
Cisco firepower Threat Defense Software |
|
CPEs | cpe:2.3:a:cisco:asa:9.12.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.14.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.15.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.16.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.17.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.18.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.19.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.20.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:asa:9.8.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:6.2.3:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:6.4.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:6.6.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:6.7.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:7.0.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:7.1.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:7.2.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:7.3.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:firepower_threat_defense_software:7.4.0:*:*:*:*:*:*:* |
|
Vendors & Products |
Cisco asa
Cisco firepower Threat Defense Software |
|
References |
| |
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: cisco
Published:
Updated: 2025-07-30T01:37:04.331Z
Reserved: 2023-11-08T15:08:07.647Z
Link: CVE-2024-20353

Updated: 2024-08-01T21:59:41.487Z

Status : Analyzed
Published: 2024-04-24T19:15:46.723
Modified: 2025-07-30T19:25:41.740
Link: CVE-2024-20353

No data.

No data.