CVE-2024-20260 - Vulnerability Details

A vulnerability in the VPN and management web servers of the Cisco Adaptive Security Virtual Appliance (ASAv) and Cisco Secure Firewall Threat Defense Virtual (FTDv), formerly Cisco Firepower Threat Defense Virtual, platforms could allow an unauthenticated, remote attacker to cause the virtual devices to run out of system memory, which could cause SSL VPN connection processing to slow down and eventually cease all together. This vulnerability is due to a lack of proper memory management for new incoming SSL/TLS connections on the virtual platforms. An attacker could exploit this vulnerability by sending a large number of new incoming SSL/TLS connections to the targeted virtual platform. A successful exploit could allow the attacker to deplete system memory, resulting in a denial of service (DoS) condition. The memory could be reclaimed slowly if the attack traffic is stopped, but a manual reload may be required to restore operations quickly.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Cisco	Adaptive Security Appliance Software Firepower Threat Defense Software

No data.

References

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdvirtual-dos-MuenGnYR

History

Wed, 23 Oct 2024 20:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Cisco Cisco adaptive Security Appliance Software Cisco firepower Threat Defense Software
CPEs		cpe:2.3:a:cisco:firepower_threat_defense_software:::::::: cpe:2.3:o:cisco:adaptive_security_appliance_software::::::::
Vendors & Products		Cisco Cisco adaptive Security Appliance Software Cisco firepower Threat Defense Software
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 23 Oct 2024 17:15:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability in the VPN and management web servers of the Cisco Adaptive Security Virtual Appliance (ASAv) and Cisco Secure Firewall Threat Defense Virtual (FTDv), formerly Cisco Firepower Threat Defense Virtual, platforms could allow an unauthenticated, remote attacker to cause the virtual devices to run out of system memory, which could cause SSL VPN connection processing to slow down and eventually cease all together. This vulnerability is due to a lack of proper memory management for new incoming SSL/TLS connections on the virtual platforms. An attacker could exploit this vulnerability by sending a large number of new incoming SSL/TLS connections to the targeted virtual platform. A successful exploit could allow the attacker to deplete system memory, resulting in a denial of service (DoS) condition. The memory could be reclaimed slowly if the attack traffic is stopped, but a manual reload may be required to restore operations quickly.
Title		Cisco Adaptive Security Virtual Appliance and Secure Firewall Threat Defense Virtual SSL VPN Denial of Service Vulnerability
Weaknesses		CWE-789
References		https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdvirtual-dos-MuenGnYR
Metrics		cvssV3_1 `{'score': 8.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H'}`

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2024-10-23T17:07:17.073Z

Updated: 2024-10-24T17:30:13.136Z

Reserved: 2023-11-08T15:08:07.623Z

Link: CVE-2024-20260

Vulnrichment

Updated: 2024-10-23T19:22:20.171Z

NVD

Status : Awaiting Analysis

Published: 2024-10-23T17:15:13.950

Modified: 2024-10-25T12:56:36.827

Link: CVE-2024-20260

Redhat

No data.

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-20260", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2023-11-08T15:08:07.623Z", "datePublished": "2024-10-23T17:07:17.073Z", "dateUpdated": "2024-10-24T17:30:13.136Z"}, "containers": {"cna": {"title": "Cisco Adaptive Security Virtual Appliance and Secure Firewall Threat Defense Virtual SSL VPN Denial of Service Vulnerability", "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "baseScore": 8.6, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}}], "descriptions": [{"lang": "en", "value": "A vulnerability in the VPN and management web servers of the Cisco Adaptive Security Virtual Appliance (ASAv) and Cisco Secure Firewall Threat Defense Virtual (FTDv), formerly Cisco Firepower Threat Defense Virtual, platforms could allow an unauthenticated, remote attacker to cause the virtual devices to run out of system memory, which could cause SSL VPN connection processing to slow down and eventually cease all together.\r\n\r\nThis vulnerability is due to a lack of proper memory management for new incoming SSL/TLS connections on the virtual platforms. An attacker could exploit this vulnerability by sending a large number of new incoming SSL/TLS connections to the targeted virtual platform. A successful exploit could allow the attacker to deplete system memory,&nbsp;resulting in a denial of service (DoS) condition. The memory could be reclaimed slowly if the attack traffic is stopped, but a manual reload may be required to restore operations quickly."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdvirtual-dos-MuenGnYR", "name": "cisco-sa-asaftdvirtual-dos-MuenGnYR"}], "exploits": [{"lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-asaftdvirtual-dos-MuenGnYR", "discovery": "INTERNAL", "defects": ["CSCwe44099"]}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "Uncontrolled Memory Allocation", "type": "cwe", "cweId": "CWE-789"}]}], "affected": [{"vendor": "Cisco", "product": "Cisco Adaptive Security Appliance (ASA) Software", "versions": [{"version": "9.12.3", "status": "affected"}, {"version": "9.12.1", "status": "affected"}, {"version": "9.8.3", "status": "affected"}, {"version": "9.12.2", "status": "affected"}, {"version": "9.8.1", "status": "affected"}, {"version": "9.8.2", "status": "affected"}, {"version": "9.8.4", "status": "affected"}, {"version": "9.8.2.45", "status": "affected"}, {"version": "9.14.1", "status": "affected"}, {"version": "9.12.4", "status": "affected"}, {"version": "9.8.2.28", "status": "affected"}, {"version": "9.8.2.17", "status": "affected"}, {"version": "9.8.2.14", "status": "affected"}, {"version": "9.8.2.8", "status": "affected"}, {"version": "9.8.2.26", "status": "affected"}, {"version": "9.8.2.38", "status": "affected"}, {"version": "9.8.2.15", "status": "affected"}, {"version": "9.8.2.24", "status": "affected"}, {"version": "9.8.2.35", "status": "affected"}, {"version": "9.8.2.33", "status": "affected"}, {"version": "9.8.2.20", "status": "affected"}, {"version": "9.8.4.25", "status": "affected"}, {"version": "9.8.3.29", "status": "affected"}, {"version": "9.8.4.17", "status": "affected"}, {"version": "9.12.2.5", "status": "affected"}, {"version": "9.12.2.4", "status": "affected"}, {"version": "9.8.4.7", "status": "affected"}, {"version": "9.12.1.3", "status": "affected"}, {"version": "9.12.3.9", "status": "affected"}, {"version": "9.8.4.8", "status": "affected"}, {"version": "9.8.4.20", "status": "affected"}, {"version": "9.12.2.9", "status": "affected"}, {"version": "9.8.3.14", "status": "affected"}, {"version": "9.12.2.1", "status": "affected"}, {"version": "9.8.3.18", "status": "affected"}, {"version": "9.8.3.16", "status": "affected"}, {"version": "9.8.4.12", "status": "affected"}, {"version": "9.8.3.21", "status": "affected"}, {"version": "9.8.4.15", "status": "affected"}, {"version": "9.8.4.10", "status": "affected"}, {"version": "9.12.3.12", "status": "affected"}, {"version": "9.8.3.26", "status": "affected"}, {"version": "9.12.3.7", "status": "affected"}, {"version": "9.14.1.10", "status": "affected"}, {"version": "9.8.4.22", "status": "affected"}, {"version": "9.8.1.7", "status": "affected"}, {"version": "9.12.1.2", "status": "affected"}, {"version": "9.8.3.11", "status": "affected"}, {"version": "9.12.3.2", "status": "affected"}, {"version": "9.8.4.3", "status": "affected"}, {"version": "9.8.1.5", "status": "affected"}, {"version": "9.12.4.2", "status": "affected"}, {"version": "9.14.1.6", "status": "affected"}, {"version": "9.8.3.8", "status": "affected"}, {"version": "9.14.1.15", "status": "affected"}, {"version": "9.14.1.19", "status": "affected"}, {"version": "9.8.4.26", "status": "affected"}, {"version": "9.12.4.4", "status": "affected"}, {"version": "9.14.1.30", "status": "affected"}, {"version": "9.8.4.29", "status": "affected"}, {"version": "9.12.4.7", "status": "affected"}, {"version": "9.15.1", "status": "affected"}, {"version": "9.14.2", "status": "affected"}, {"version": "9.8.4.32", "status": "affected"}, {"version": "9.12.4.10", "status": "affected"}, {"version": "9.14.2.4", "status": "affected"}, {"version": "9.15.1.7", "status": "affected"}, {"version": "9.14.2.8", "status": "affected"}, {"version": "9.12.4.13", "status": "affected"}, {"version": "9.15.1.10", "status": "affected"}, {"version": "9.14.2.13", "status": "affected"}, {"version": "9.8.4.34", "status": "affected"}, {"version": "9.12.4.18", "status": "affected"}, {"version": "9.15.1.15", "status": "affected"}, {"version": "9.8.4.35", "status": "affected"}, {"version": "9.14.2.15", "status": "affected"}, {"version": "9.12.4.24", "status": "affected"}, {"version": "9.16.1", "status": "affected"}, {"version": "9.15.1.16", "status": "affected"}, {"version": "9.8.4.39", "status": "affected"}, {"version": "9.14.3", "status": "affected"}, {"version": "9.12.4.26", "status": "affected"}, {"version": "9.16.1.28", "status": "affected"}, {"version": "9.14.3.1", "status": "affected"}, {"version": "9.12.4.29", "status": "affected"}, {"version": "9.14.3.9", "status": "affected"}, {"version": "9.16.2", "status": "affected"}, {"version": "9.12.4.30", "status": "affected"}, {"version": "9.16.2.3", "status": "affected"}, {"version": "9.8.4.40", "status": "affected"}, {"version": "9.14.3.11", "status": "affected"}, {"version": "9.15.1.17", "status": "affected"}, {"version": "9.12.4.35", "status": "affected"}, {"version": "9.8.4.41", "status": "affected"}, {"version": "9.15.1.1", "status": "affected"}, {"version": "9.14.3.13", "status": "affected"}, {"version": "9.16.2.7", "status": "affected"}, {"version": "9.12.4.37", "status": "affected"}, {"version": "9.14.3.15", "status": "affected"}, {"version": "9.17.1", "status": "affected"}, {"version": "9.16.2.11", "status": "affected"}, {"version": "9.14.3.18", "status": "affected"}, {"version": "9.16.2.13", "status": "affected"}, {"version": "9.12.4.39", "status": "affected"}, {"version": "9.12.4.38", "status": "affected"}, {"version": "9.8.4.43", "status": "affected"}, {"version": "9.14.4", "status": "affected"}, {"version": "9.16.2.14", "status": "affected"}, {"version": "9.17.1.7", "status": "affected"}, {"version": "9.12.4.40", "status": "affected"}, {"version": "9.15.1.21", "status": "affected"}, {"version": "9.16.3.3", "status": "affected"}, {"version": "9.16.3", "status": "affected"}, {"version": "9.14.4.6", "status": "affected"}, {"version": "9.17.1.9", "status": "affected"}, {"version": "9.14.4.7", "status": "affected"}, {"version": "9.16.3.14", "status": "affected"}, {"version": "9.12.4.41", "status": "affected"}, {"version": "9.17.1.10", "status": "affected"}, {"version": "9.8.4.44", "status": "affected"}, {"version": "9.18.1", "status": "affected"}, {"version": "9.14.4.12", "status": "affected"}, {"version": "9.12.4.47", "status": "affected"}, {"version": "9.16.3.15", "status": "affected"}, {"version": "9.18.1.3", "status": "affected"}, {"version": "9.17.1.11", "status": "affected"}, {"version": "9.12.4.48", "status": "affected"}, {"version": "9.14.4.13", "status": "affected"}, {"version": "9.18.2", "status": "affected"}, {"version": "9.16.3.19", "status": "affected"}, {"version": "9.17.1.13", "status": "affected"}, {"version": "9.12.4.50", "status": "affected"}, {"version": "9.14.4.14", "status": "affected"}, {"version": "9.17.1.15", "status": "affected"}, {"version": "9.8.4.45", "status": "affected"}, {"version": "9.12.4.52", "status": "affected"}, {"version": "9.14.4.15", "status": "affected"}, {"version": "9.16.3.23", "status": "affected"}, {"version": "9.18.2.5", "status": "affected"}, {"version": "9.16.4", "status": "affected"}, {"version": "9.12.4.54", "status": "affected"}, {"version": "9.14.4.17", "status": "affected"}, {"version": "9.8.4.46", "status": "affected"}, {"version": "9.17.1.20", "status": "affected"}, {"version": "9.18.2.7", "status": "affected"}, {"version": "9.19.1", "status": "affected"}, {"version": "9.16.4.9", "status": "affected"}, {"version": "9.12.4.55", "status": "affected"}, {"version": "9.18.2.8", "status": "affected"}, {"version": "9.14.4.22", "status": "affected"}, {"version": "9.16.4.14", "status": "affected"}, {"version": "9.8.4.48", "status": "affected"}, {"version": "9.18.3", "status": "affected"}, {"version": "9.19.1.5", "status": "affected"}, {"version": "9.14.4.23", "status": "affected"}, {"version": "9.12.4.56", "status": "affected"}, {"version": "9.16.4.18", "status": "affected"}, {"version": "9.17.1.30", "status": "affected"}, {"version": "9.19.1.9", "status": "affected"}, {"version": "9.18.3.39", "status": "affected"}, {"version": "9.16.4.19", "status": "affected"}, {"version": "9.12.4.58", "status": "affected"}, {"version": "9.19.1.12", "status": "affected"}, {"version": "9.18.3.46", "status": "affected"}, {"version": "9.16.4.27", "status": "affected"}, {"version": "9.19.1.18", "status": "affected"}, {"version": "9.18.3.53", "status": "affected"}, {"version": "9.18.3.55", "status": "affected"}, {"version": "9.16.4.38", "status": "affected"}, {"version": "9.17.1.33", "status": "affected"}, {"version": "9.12.4.62", "status": "affected"}, {"version": "9.16.4.39", "status": "affected"}, {"version": "9.18.3.56", "status": "affected"}, {"version": "9.16.4.42", "status": "affected"}, {"version": "9.19.1.22", "status": "affected"}, {"version": "9.18.4", "status": "affected"}, {"version": "9.18.4.5", "status": "affected"}, {"version": "9.19.1.24", "status": "affected"}, {"version": "9.16.4.48", "status": "affected"}, {"version": "9.18.4.8", "status": "affected"}, {"version": "9.20.2", "status": "affected"}, {"version": "9.19.1.27", "status": "affected"}, {"version": "9.12.4.65", "status": "affected"}, {"version": "9.16.4.55", "status": "affected"}, {"version": "9.18.4.22", "status": "affected"}, {"version": "9.20.2.10", "status": "affected"}, {"version": "9.16.4.57", "status": "affected"}, {"version": "9.19.1.28", "status": "affected"}, {"version": "9.17.1.39", "status": "affected"}, {"version": "9.12.4.67", "status": "affected"}, {"version": "9.14.4.24", "status": "affected"}, {"version": "9.18.4.24", "status": "affected"}, {"version": "9.20.2.21", "status": "affected"}, {"version": "9.16.4.61", "status": "affected"}, {"version": "9.19.1.31", "status": "affected"}, {"version": "9.18.4.29", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Cisco", "product": "Cisco Firepower Threat Defense Software", "versions": [{"version": "6.2.3.7", "status": "affected"}, {"version": "6.4.0", "status": "affected"}, {"version": "6.4.0.1", "status": "affected"}, {"version": "6.2.3.15", "status": "affected"}, {"version": "6.2.3.5", "status": "affected"}, {"version": "6.2.3", "status": "affected"}, {"version": "6.2.3.4", "status": "affected"}, {"version": "6.2.3.10", "status": "affected"}, {"version": "6.4.0.4", "status": "affected"}, {"version": "6.4.0.6", "status": "affected"}, {"version": "6.4.0.5", "status": "affected"}, {"version": "6.2.3.13", "status": "affected"}, {"version": "6.2.3.2", "status": "affected"}, {"version": "6.4.0.2", "status": "affected"}, {"version": "6.2.3.14", "status": "affected"}, {"version": "6.2.3.8", "status": "affected"}, {"version": "6.2.3.3", "status": "affected"}, {"version": "6.2.3.1", "status": "affected"}, {"version": "6.2.3.12", "status": "affected"}, {"version": "6.2.3.11", "status": "affected"}, {"version": "6.2.3.6", "status": "affected"}, {"version": "6.4.0.3", "status": "affected"}, {"version": "6.2.3.9", "status": "affected"}, {"version": "6.4.0.8", "status": "affected"}, {"version": "6.4.0.7", "status": "affected"}, {"version": "6.6.0", "status": "affected"}, {"version": "6.4.0.9", "status": "affected"}, {"version": "6.2.3.16", "status": "affected"}, {"version": "6.6.0.1", "status": "affected"}, {"version": "6.6.1", "status": "affected"}, {"version": "6.4.0.10", "status": "affected"}, {"version": "6.7.0", "status": "affected"}, {"version": "6.4.0.11", "status": "affected"}, {"version": "6.6.3", "status": "affected"}, {"version": "6.7.0.1", "status": "affected"}, {"version": "6.6.4", "status": "affected"}, {"version": "6.4.0.12", "status": "affected"}, {"version": "6.7.0.2", "status": "affected"}, {"version": "7.0.0", "status": "affected"}, {"version": "6.2.3.17", "status": "affected"}, {"version": "7.0.0.1", "status": "affected"}, {"version": "6.6.5", "status": "affected"}, {"version": "7.0.1", "status": "affected"}, {"version": "7.1.0", "status": "affected"}, {"version": "6.4.0.13", "status": "affected"}, {"version": "6.6.5.1", "status": "affected"}, {"version": "6.2.3.18", "status": "affected"}, {"version": "7.0.1.1", "status": "affected"}, {"version": "6.7.0.3", "status": "affected"}, {"version": "6.4.0.14", "status": "affected"}, {"version": "7.1.0.1", "status": "affected"}, {"version": "6.6.5.2", "status": "affected"}, {"version": "7.0.2", "status": "affected"}, {"version": "6.4.0.15", "status": "affected"}, {"version": "7.2.0", "status": "affected"}, {"version": "7.0.2.1", "status": "affected"}, {"version": "7.0.3", "status": "affected"}, {"version": "6.6.7", "status": "affected"}, {"version": "7.2.0.1", "status": "affected"}, {"version": "7.0.4", "status": "affected"}, {"version": "7.2.1", "status": "affected"}, {"version": "7.0.5", "status": "affected"}, {"version": "6.4.0.16", "status": "affected"}, {"version": "7.3.0", "status": "affected"}, {"version": "7.2.2", "status": "affected"}, {"version": "6.6.7.1", "status": "affected"}, {"version": "7.2.3", "status": "affected"}, {"version": "7.3.1", "status": "affected"}, {"version": "7.1.0.3", "status": "affected"}, {"version": "7.2.4", "status": "affected"}, {"version": "7.0.6", "status": "affected"}, {"version": "7.2.5", "status": "affected"}, {"version": "7.2.4.1", "status": "affected"}, {"version": "7.3.1.1", "status": "affected"}, {"version": "6.4.0.17", "status": "affected"}, {"version": "7.0.6.1", "status": "affected"}, {"version": "7.2.5.1", "status": "affected"}, {"version": "7.4.1", "status": "affected"}, {"version": "7.2.6", "status": "affected"}, {"version": "7.0.6.2", "status": "affected"}, {"version": "7.4.1.1", "status": "affected"}, {"version": "6.6.7.2", "status": "affected"}, {"version": "6.4.0.18", "status": "affected"}, {"version": "7.2.7", "status": "affected"}, {"version": "7.2.5.2", "status": "affected"}, {"version": "7.3.1.2", "status": "affected"}, {"version": "7.2.8", "status": "affected"}, {"version": "7.2.8.1", "status": "affected"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-10-23T17:07:17.073Z"}}, "adp": [{"affected": [{"vendor": "cisco", "product": "firepower_threat_defense_software", "cpes": ["cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "6.2.3", "status": "affected", "lessThanOrEqual": "6.2.3.18", "versionType": "custom"}, {"version": "7.4.1", "status": "affected", "lessThanOrEqual": "7.4.1.1", "versionType": "custom"}, {"version": "7.3.0", "status": "affected", "lessThanOrEqual": "7.3.1.2", "versionType": "custom"}, {"version": "7.2.0", "status": "affected", "lessThanOrEqual": "7.2.8.1", "versionType": "custom"}, {"version": "7.1.0", "status": "affected", "lessThanOrEqual": "7.1.0.3", "versionType": "custom"}, {"version": "7.0.0", "status": "affected", "lessThanOrEqual": "7.0.6.2", "versionType": "custom"}, {"version": "6.7.0", "status": "affected", "lessThanOrEqual": "6.7.0.3", "versionType": "custom"}, {"version": "6.6.0", "status": "affected", "lessThanOrEqual": "6.6.7.2", "versionType": "custom"}, {"version": "6.4.0", "status": "affected", "lessThanOrEqual": "6.4.0.18", "versionType": "custom"}]}, {"vendor": "cisco", "product": "adaptive_security_appliance_software", "cpes": ["cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "9.8.1", "status": "affected", "lessThanOrEqual": "9.8.4.48", "versionType": "custom"}, {"version": "9.20.2", "status": "affected", "lessThanOrEqual": "9.20.2.21", "versionType": "custom"}, {"version": "9.19.1", "status": "affected", "lessThanOrEqual": "9.19.1.31", "versionType": "custom"}, {"version": "9.18.1", "status": "affected", "lessThanOrEqual": "9.18.4.29", "versionType": "custom"}, {"version": "9.17.1", "status": "affected", "lessThanOrEqual": "19.17.1.39", "versionType": "custom"}, {"version": "9.16.1", "status": "affected", "lessThanOrEqual": "9.16.4.61", "versionType": "custom"}, {"version": "9.15.1", "status": "affected", "lessThanOrEqual": "9.15.1.21", "versionType": "custom"}, {"version": "9.14.1", "status": "affected", "lessThanOrEqual": "9.14.4.24", "versionType": "custom"}, {"version": "9.12.1", "status": "affected", "lessThanOrEqual": "9.12.4.67", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-10-23T18:42:51.960960Z", "id": "CVE-2024-20260", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-24T17:30:13.136Z"}}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2024-20260 (string)

assignerOrgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

state : PUBLISHED (string)

assignerShortName : cisco (string)

dateReserved : 2023-11-08T15:08:07.623Z (string)

datePublished : 2024-10-23T17:07:17.073Z (string)

dateUpdated : 2024-10-24T17:30:13.136Z (string)

}

containers : { »

cna : { »

title : Cisco Adaptive Security Virtual Appliance and Secure Firewall Threat Defense Virtual SSL VPN Denial of Service Vulnerability (string)

metrics : [ »

0 : { »

format : cvssV3_1 (string)

cvssV3_1 : { »

version : 3.1 (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H (string)

baseScore : 8.6 (number)

baseSeverity : HIGH (string)

attackVector : NETWORK (string)

attackComplexity : LOW (string)

privilegesRequired : NONE (string)

userInteraction : NONE (string)

scope : CHANGED (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

availabilityImpact : HIGH (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : A vulnerability in the VPN and management web servers of the Cisco Adaptive Security Virtual Appliance (ASAv) and Cisco Secure Firewall Threat Defense Virtual (FTDv), formerly Cisco Firepower Threat Defense Virtual, platforms could allow an unauthenticated, remote attacker to cause the virtual devices to run out of system memory, which could cause SSL VPN connection processing to slow down and eventually cease all together. This vulnerability is due to a lack of proper memory management for new incoming SSL/TLS connections on the virtual platforms. An attacker could exploit this vulnerability by sending a large number of new incoming SSL/TLS connections to the targeted virtual platform. A successful exploit could allow the attacker to deplete system memory, resulting in a denial of service (DoS) condition. The memory could be reclaimed slowly if the attack traffic is stopped, but a manual reload may be required to restore operations quickly. (string)

}

]

references : [ »

0 : { »

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdvirtual-dos-MuenGnYR (string)

name : cisco-sa-asaftdvirtual-dos-MuenGnYR (string)

}

]

exploits : [ »

0 : { »

lang : en (string)

value : The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. (string)

}

]

source : { »

advisory : cisco-sa-asaftdvirtual-dos-MuenGnYR (string)

discovery : INTERNAL (string)

defects : [ »

0 : CSCwe44099 (string)

]

}

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

description : Uncontrolled Memory Allocation (string)

type : cwe (string)

cweId : CWE-789 (string)

}

]

}

]

affected : [ »

0 : { »

vendor : Cisco (string)

product : Cisco Adaptive Security Appliance (ASA) Software (string)

versions : [ »

0 : { »

version : 9.12.3 (string)

status : affected (string)

}

1 : { »

version : 9.12.1 (string)

status : affected (string)

}

2 : { »

version : 9.8.3 (string)

status : affected (string)

}

3 : { »

version : 9.12.2 (string)

status : affected (string)

}

4 : { »

version : 9.8.1 (string)

status : affected (string)

}

5 : { »

version : 9.8.2 (string)

status : affected (string)

}

6 : { »

version : 9.8.4 (string)

status : affected (string)

}

7 : { »

version : 9.8.2.45 (string)

status : affected (string)

}

8 : { »

version : 9.14.1 (string)

status : affected (string)

}

9 : { »

version : 9.12.4 (string)

status : affected (string)

}

10 : { »

version : 9.8.2.28 (string)

status : affected (string)

}

11 : { »

version : 9.8.2.17 (string)

status : affected (string)

}

12 : { »

version : 9.8.2.14 (string)

status : affected (string)

}

13 : { »

version : 9.8.2.8 (string)

status : affected (string)

}

14 : { »

version : 9.8.2.26 (string)

status : affected (string)

}

15 : { »

version : 9.8.2.38 (string)

status : affected (string)

}

16 : { »

version : 9.8.2.15 (string)

status : affected (string)

}

17 : { »

version : 9.8.2.24 (string)

status : affected (string)

}

18 : { »

version : 9.8.2.35 (string)

status : affected (string)

}

19 : { »

version : 9.8.2.33 (string)

status : affected (string)

}

20 : { »

version : 9.8.2.20 (string)

status : affected (string)

}

21 : { »

version : 9.8.4.25 (string)

status : affected (string)

}

22 : { »

version : 9.8.3.29 (string)

status : affected (string)

}

23 : { »

version : 9.8.4.17 (string)

status : affected (string)

}

24 : { »

version : 9.12.2.5 (string)

status : affected (string)

}

25 : { »

version : 9.12.2.4 (string)

status : affected (string)

}

26 : { »

version : 9.8.4.7 (string)

status : affected (string)

}

27 : { »

version : 9.12.1.3 (string)

status : affected (string)

}

28 : { »

version : 9.12.3.9 (string)

status : affected (string)

}

29 : { »

version : 9.8.4.8 (string)

status : affected (string)

}

30 : { »

version : 9.8.4.20 (string)

status : affected (string)

}

31 : { »

version : 9.12.2.9 (string)

status : affected (string)

}

32 : { »

version : 9.8.3.14 (string)

status : affected (string)

}

33 : { »

version : 9.12.2.1 (string)

status : affected (string)

}

34 : { »

version : 9.8.3.18 (string)

status : affected (string)

}

35 : { »

version : 9.8.3.16 (string)

status : affected (string)

}

36 : { »

version : 9.8.4.12 (string)

status : affected (string)

}

37 : { »

version : 9.8.3.21 (string)

status : affected (string)

}

38 : { »

version : 9.8.4.15 (string)

status : affected (string)

}

39 : { »

version : 9.8.4.10 (string)

status : affected (string)

}

40 : { »

version : 9.12.3.12 (string)

status : affected (string)

}

41 : { »

version : 9.8.3.26 (string)

status : affected (string)

}

42 : { »

version : 9.12.3.7 (string)

status : affected (string)

}

43 : { »

version : 9.14.1.10 (string)

status : affected (string)

}

44 : { »

version : 9.8.4.22 (string)

status : affected (string)

}

45 : { »

version : 9.8.1.7 (string)

status : affected (string)

}

46 : { »

version : 9.12.1.2 (string)

status : affected (string)

}

47 : { »

version : 9.8.3.11 (string)

status : affected (string)

}

48 : { »

version : 9.12.3.2 (string)

status : affected (string)

}

49 : { »

version : 9.8.4.3 (string)

status : affected (string)

}

50 : { »

version : 9.8.1.5 (string)

status : affected (string)

}

51 : { »

version : 9.12.4.2 (string)

status : affected (string)

}

52 : { »

version : 9.14.1.6 (string)

status : affected (string)

}

53 : { »

version : 9.8.3.8 (string)

status : affected (string)

}

54 : { »

version : 9.14.1.15 (string)

status : affected (string)

}

55 : { »

version : 9.14.1.19 (string)

status : affected (string)

}

56 : { »

version : 9.8.4.26 (string)

status : affected (string)

}

57 : { »

version : 9.12.4.4 (string)

status : affected (string)

}

58 : { »

version : 9.14.1.30 (string)

status : affected (string)

}

59 : { »

version : 9.8.4.29 (string)

status : affected (string)

}

60 : { »

version : 9.12.4.7 (string)

status : affected (string)

}

61 : { »

version : 9.15.1 (string)

status : affected (string)

}

62 : { »

version : 9.14.2 (string)

status : affected (string)

}

63 : { »

version : 9.8.4.32 (string)

status : affected (string)

}

64 : { »

version : 9.12.4.10 (string)

status : affected (string)

}

65 : { »

version : 9.14.2.4 (string)

status : affected (string)

}

66 : { »

version : 9.15.1.7 (string)

status : affected (string)

}

67 : { »

version : 9.14.2.8 (string)

status : affected (string)

}

68 : { »

version : 9.12.4.13 (string)

status : affected (string)

}

69 : { »

version : 9.15.1.10 (string)

status : affected (string)

}

70 : { »

version : 9.14.2.13 (string)

status : affected (string)

}

71 : { »

version : 9.8.4.34 (string)

status : affected (string)

}

72 : { »

version : 9.12.4.18 (string)

status : affected (string)

}

73 : { »

version : 9.15.1.15 (string)

status : affected (string)

}

74 : { »

version : 9.8.4.35 (string)

status : affected (string)

}

75 : { »

version : 9.14.2.15 (string)

status : affected (string)

}

76 : { »

version : 9.12.4.24 (string)

status : affected (string)

}

77 : { »

version : 9.16.1 (string)

status : affected (string)

}

78 : { »

version : 9.15.1.16 (string)

status : affected (string)

}

79 : { »

version : 9.8.4.39 (string)

status : affected (string)

}

80 : { »

version : 9.14.3 (string)

status : affected (string)

}

81 : { »

version : 9.12.4.26 (string)

status : affected (string)

}

82 : { »

version : 9.16.1.28 (string)

status : affected (string)

}

83 : { »

version : 9.14.3.1 (string)

status : affected (string)

}

84 : { »

version : 9.12.4.29 (string)

status : affected (string)

}

85 : { »

version : 9.14.3.9 (string)

status : affected (string)

}

86 : { »

version : 9.16.2 (string)

status : affected (string)

}

87 : { »

version : 9.12.4.30 (string)

status : affected (string)

}

88 : { »

version : 9.16.2.3 (string)

status : affected (string)

}

89 : { »

version : 9.8.4.40 (string)

status : affected (string)

}

90 : { »

version : 9.14.3.11 (string)

status : affected (string)

}

91 : { »

version : 9.15.1.17 (string)

status : affected (string)

}

92 : { »

version : 9.12.4.35 (string)

status : affected (string)

}

93 : { »

version : 9.8.4.41 (string)

status : affected (string)

}

94 : { »

version : 9.15.1.1 (string)

status : affected (string)

}

95 : { »

version : 9.14.3.13 (string)

status : affected (string)

}

96 : { »

version : 9.16.2.7 (string)

status : affected (string)

}

97 : { »

version : 9.12.4.37 (string)

status : affected (string)

}

98 : { »

version : 9.14.3.15 (string)

status : affected (string)

}

99 : { »

version : 9.17.1 (string)

status : affected (string)

}

100 : { »

version : 9.16.2.11 (string)

status : affected (string)

}

101 : { »

version : 9.14.3.18 (string)

status : affected (string)

}

102 : { »

version : 9.16.2.13 (string)

status : affected (string)

}

103 : { »

version : 9.12.4.39 (string)

status : affected (string)

}

104 : { »

version : 9.12.4.38 (string)

status : affected (string)

}

105 : { »

version : 9.8.4.43 (string)

status : affected (string)

}

106 : { »

version : 9.14.4 (string)

status : affected (string)

}

107 : { »

version : 9.16.2.14 (string)

status : affected (string)

}

108 : { »

version : 9.17.1.7 (string)

status : affected (string)

}

109 : { »

version : 9.12.4.40 (string)

status : affected (string)

}

110 : { »

version : 9.15.1.21 (string)

status : affected (string)

}

111 : { »

version : 9.16.3.3 (string)

status : affected (string)

}

112 : { »

version : 9.16.3 (string)

status : affected (string)

}

113 : { »

version : 9.14.4.6 (string)

status : affected (string)

}

114 : { »

version : 9.17.1.9 (string)

status : affected (string)

}

115 : { »

version : 9.14.4.7 (string)

status : affected (string)

}

116 : { »

version : 9.16.3.14 (string)

status : affected (string)

}

117 : { »

version : 9.12.4.41 (string)

status : affected (string)

}

118 : { »

version : 9.17.1.10 (string)

status : affected (string)

}

119 : { »

version : 9.8.4.44 (string)

status : affected (string)

}

120 : { »

version : 9.18.1 (string)

status : affected (string)

}

121 : { »

version : 9.14.4.12 (string)

status : affected (string)

}

122 : { »

version : 9.12.4.47 (string)

status : affected (string)

}

123 : { »

version : 9.16.3.15 (string)

status : affected (string)

}

124 : { »

version : 9.18.1.3 (string)

status : affected (string)

}

125 : { »

version : 9.17.1.11 (string)

status : affected (string)

}

126 : { »

version : 9.12.4.48 (string)

status : affected (string)

}

127 : { »

version : 9.14.4.13 (string)

status : affected (string)

}

128 : { »

version : 9.18.2 (string)

status : affected (string)

}

129 : { »

version : 9.16.3.19 (string)

status : affected (string)

}

130 : { »

version : 9.17.1.13 (string)

status : affected (string)

}

131 : { »

version : 9.12.4.50 (string)

status : affected (string)

}

132 : { »

version : 9.14.4.14 (string)

status : affected (string)

}

133 : { »

version : 9.17.1.15 (string)

status : affected (string)

}

134 : { »

version : 9.8.4.45 (string)

status : affected (string)

}

135 : { »

version : 9.12.4.52 (string)

status : affected (string)

}

136 : { »

version : 9.14.4.15 (string)

status : affected (string)

}

137 : { »

version : 9.16.3.23 (string)

status : affected (string)

}

138 : { »

version : 9.18.2.5 (string)

status : affected (string)

}

139 : { »

version : 9.16.4 (string)

status : affected (string)

}

140 : { »

version : 9.12.4.54 (string)

status : affected (string)

}

141 : { »

version : 9.14.4.17 (string)

status : affected (string)

}

142 : { »

version : 9.8.4.46 (string)

status : affected (string)

}

143 : { »

version : 9.17.1.20 (string)

status : affected (string)

}

144 : { »

version : 9.18.2.7 (string)

status : affected (string)

}

145 : { »

version : 9.19.1 (string)

status : affected (string)

}

146 : { »

version : 9.16.4.9 (string)

status : affected (string)

}

147 : { »

version : 9.12.4.55 (string)

status : affected (string)

}

148 : { »

version : 9.18.2.8 (string)

status : affected (string)

}

149 : { »

version : 9.14.4.22 (string)

status : affected (string)

}

150 : { »

version : 9.16.4.14 (string)

status : affected (string)

}

151 : { »

version : 9.8.4.48 (string)

status : affected (string)

}

152 : { »

version : 9.18.3 (string)

status : affected (string)

}

153 : { »

version : 9.19.1.5 (string)

status : affected (string)

}

154 : { »

version : 9.14.4.23 (string)

status : affected (string)

}

155 : { »

version : 9.12.4.56 (string)

status : affected (string)

}

156 : { »

version : 9.16.4.18 (string)

status : affected (string)

}

157 : { »

version : 9.17.1.30 (string)

status : affected (string)

}

158 : { »

version : 9.19.1.9 (string)

status : affected (string)

}

159 : { »

version : 9.18.3.39 (string)

status : affected (string)

}

160 : { »

version : 9.16.4.19 (string)

status : affected (string)

}

161 : { »

version : 9.12.4.58 (string)

status : affected (string)

}

162 : { »

version : 9.19.1.12 (string)

status : affected (string)

}

163 : { »

version : 9.18.3.46 (string)

status : affected (string)

}

164 : { »

version : 9.16.4.27 (string)

status : affected (string)

}

165 : { »

version : 9.19.1.18 (string)

status : affected (string)

}

166 : { »

version : 9.18.3.53 (string)

status : affected (string)

}

167 : { »

version : 9.18.3.55 (string)

status : affected (string)

}

168 : { »

version : 9.16.4.38 (string)

status : affected (string)

}

169 : { »

version : 9.17.1.33 (string)

status : affected (string)

}

170 : { »

version : 9.12.4.62 (string)

status : affected (string)

}

171 : { »

version : 9.16.4.39 (string)

status : affected (string)

}

172 : { »

version : 9.18.3.56 (string)

status : affected (string)

}

173 : { »

version : 9.16.4.42 (string)

status : affected (string)

}

174 : { »

version : 9.19.1.22 (string)

status : affected (string)

}

175 : { »

version : 9.18.4 (string)

status : affected (string)

}

176 : { »

version : 9.18.4.5 (string)

status : affected (string)

}

177 : { »

version : 9.19.1.24 (string)

status : affected (string)

}

178 : { »

version : 9.16.4.48 (string)

status : affected (string)

}

179 : { »

version : 9.18.4.8 (string)

status : affected (string)

}

180 : { »

version : 9.20.2 (string)

status : affected (string)

}

181 : { »

version : 9.19.1.27 (string)

status : affected (string)

}

182 : { »

version : 9.12.4.65 (string)

status : affected (string)

}

183 : { »

version : 9.16.4.55 (string)

status : affected (string)

}

184 : { »

version : 9.18.4.22 (string)

status : affected (string)

}

185 : { »

version : 9.20.2.10 (string)

status : affected (string)

}

186 : { »

version : 9.16.4.57 (string)

status : affected (string)

}

187 : { »

version : 9.19.1.28 (string)

status : affected (string)

}

188 : { »

version : 9.17.1.39 (string)

status : affected (string)

}

189 : { »

version : 9.12.4.67 (string)

status : affected (string)

}

190 : { »

version : 9.14.4.24 (string)

status : affected (string)

}

191 : { »

version : 9.18.4.24 (string)

status : affected (string)

}

192 : { »

version : 9.20.2.21 (string)

status : affected (string)

}

193 : { »

version : 9.16.4.61 (string)

status : affected (string)

}

194 : { »

version : 9.19.1.31 (string)

status : affected (string)

}

195 : { »

version : 9.18.4.29 (string)

status : affected (string)

}

]

defaultStatus : unknown (string)

}

1 : { »

vendor : Cisco (string)

product : Cisco Firepower Threat Defense Software (string)

versions : [ »

0 : { »

version : 6.2.3.7 (string)

status : affected (string)

}

1 : { »

version : 6.4.0 (string)

status : affected (string)

}

2 : { »

version : 6.4.0.1 (string)

status : affected (string)

}

3 : { »

version : 6.2.3.15 (string)

status : affected (string)

}

4 : { »

version : 6.2.3.5 (string)

status : affected (string)

}

5 : { »

version : 6.2.3 (string)

status : affected (string)

}

6 : { »

version : 6.2.3.4 (string)

status : affected (string)

}

7 : { »

version : 6.2.3.10 (string)

status : affected (string)

}

8 : { »

version : 6.4.0.4 (string)

status : affected (string)

}

9 : { »

version : 6.4.0.6 (string)

status : affected (string)

}

10 : { »

version : 6.4.0.5 (string)

status : affected (string)

}

11 : { »

version : 6.2.3.13 (string)

status : affected (string)

}

12 : { »

version : 6.2.3.2 (string)

status : affected (string)

}

13 : { »

version : 6.4.0.2 (string)

status : affected (string)

}

14 : { »

version : 6.2.3.14 (string)

status : affected (string)

}

15 : { »

version : 6.2.3.8 (string)

status : affected (string)

}

16 : { »

version : 6.2.3.3 (string)

status : affected (string)

}

17 : { »

version : 6.2.3.1 (string)

status : affected (string)

}

18 : { »

version : 6.2.3.12 (string)

status : affected (string)

}

19 : { »

version : 6.2.3.11 (string)

status : affected (string)

}

20 : { »

version : 6.2.3.6 (string)

status : affected (string)

}

21 : { »

version : 6.4.0.3 (string)

status : affected (string)

}

22 : { »

version : 6.2.3.9 (string)

status : affected (string)

}

23 : { »

version : 6.4.0.8 (string)

status : affected (string)

}

24 : { »

version : 6.4.0.7 (string)

status : affected (string)

}

25 : { »

version : 6.6.0 (string)

status : affected (string)

}

26 : { »

version : 6.4.0.9 (string)

status : affected (string)

}

27 : { »

version : 6.2.3.16 (string)

status : affected (string)

}

28 : { »

version : 6.6.0.1 (string)

status : affected (string)

}

29 : { »

version : 6.6.1 (string)

status : affected (string)

}

30 : { »

version : 6.4.0.10 (string)

status : affected (string)

}

31 : { »

version : 6.7.0 (string)

status : affected (string)

}

32 : { »

version : 6.4.0.11 (string)

status : affected (string)

}

33 : { »

version : 6.6.3 (string)

status : affected (string)

}

34 : { »

version : 6.7.0.1 (string)

status : affected (string)

}

35 : { »

version : 6.6.4 (string)

status : affected (string)

}

36 : { »

version : 6.4.0.12 (string)

status : affected (string)

}

37 : { »

version : 6.7.0.2 (string)

status : affected (string)

}

38 : { »

version : 7.0.0 (string)

status : affected (string)

}

39 : { »

version : 6.2.3.17 (string)

status : affected (string)

}

40 : { »

version : 7.0.0.1 (string)

status : affected (string)

}

41 : { »

version : 6.6.5 (string)

status : affected (string)

}

42 : { »

version : 7.0.1 (string)

status : affected (string)

}

43 : { »

version : 7.1.0 (string)

status : affected (string)

}

44 : { »

version : 6.4.0.13 (string)

status : affected (string)

}

45 : { »

version : 6.6.5.1 (string)

status : affected (string)

}

46 : { »

version : 6.2.3.18 (string)

status : affected (string)

}

47 : { »

version : 7.0.1.1 (string)

status : affected (string)

}

48 : { »

version : 6.7.0.3 (string)

status : affected (string)

}

49 : { »

version : 6.4.0.14 (string)

status : affected (string)

}

50 : { »

version : 7.1.0.1 (string)

status : affected (string)

}

51 : { »

version : 6.6.5.2 (string)

status : affected (string)

}

52 : { »

version : 7.0.2 (string)

status : affected (string)

}

53 : { »

version : 6.4.0.15 (string)

status : affected (string)

}

54 : { »

version : 7.2.0 (string)

status : affected (string)

}

55 : { »

version : 7.0.2.1 (string)

status : affected (string)

}

56 : { »

version : 7.0.3 (string)

status : affected (string)

}

57 : { »

version : 6.6.7 (string)

status : affected (string)

}

58 : { »

version : 7.2.0.1 (string)

status : affected (string)

}

59 : { »

version : 7.0.4 (string)

status : affected (string)

}

60 : { »

version : 7.2.1 (string)

status : affected (string)

}

61 : { »

version : 7.0.5 (string)

status : affected (string)

}

62 : { »

version : 6.4.0.16 (string)

status : affected (string)

}

63 : { »

version : 7.3.0 (string)

status : affected (string)

}

64 : { »

version : 7.2.2 (string)

status : affected (string)

}

65 : { »

version : 6.6.7.1 (string)

status : affected (string)

}

66 : { »

version : 7.2.3 (string)

status : affected (string)

}

67 : { »

version : 7.3.1 (string)

status : affected (string)

}

68 : { »

version : 7.1.0.3 (string)

status : affected (string)

}

69 : { »

version : 7.2.4 (string)

status : affected (string)

}

70 : { »

version : 7.0.6 (string)

status : affected (string)

}

71 : { »

version : 7.2.5 (string)

status : affected (string)

}

72 : { »

version : 7.2.4.1 (string)

status : affected (string)

}

73 : { »

version : 7.3.1.1 (string)

status : affected (string)

}

74 : { »

version : 6.4.0.17 (string)

status : affected (string)

}

75 : { »

version : 7.0.6.1 (string)

status : affected (string)

}

76 : { »

version : 7.2.5.1 (string)

status : affected (string)

}

77 : { »

version : 7.4.1 (string)

status : affected (string)

}

78 : { »

version : 7.2.6 (string)

status : affected (string)

}

79 : { »

version : 7.0.6.2 (string)

status : affected (string)

}

80 : { »

version : 7.4.1.1 (string)

status : affected (string)

}

81 : { »

version : 6.6.7.2 (string)

status : affected (string)

}

82 : { »

version : 6.4.0.18 (string)

status : affected (string)

}

83 : { »

version : 7.2.7 (string)

status : affected (string)

}

84 : { »

version : 7.2.5.2 (string)

status : affected (string)

}

85 : { »

version : 7.3.1.2 (string)

status : affected (string)

}

86 : { »

version : 7.2.8 (string)

status : affected (string)

}

87 : { »

version : 7.2.8.1 (string)

status : affected (string)

}

]

defaultStatus : unknown (string)

}

]

providerMetadata : { »

orgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

shortName : cisco (string)

dateUpdated : 2024-10-23T17:07:17.073Z (string)

}

adp : [ »

0 : { »

affected : [ »

0 : { »

vendor : cisco (string)

product : firepower_threat_defense_software (string)

cpes : [ »

0 : cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 6.2.3 (string)

status : affected (string)

lessThanOrEqual : 6.2.3.18 (string)

versionType : custom (string)

}

1 : { »

version : 7.4.1 (string)

status : affected (string)

lessThanOrEqual : 7.4.1.1 (string)

versionType : custom (string)

}

2 : { »

version : 7.3.0 (string)

status : affected (string)

lessThanOrEqual : 7.3.1.2 (string)

versionType : custom (string)

}

3 : { »

version : 7.2.0 (string)

status : affected (string)

lessThanOrEqual : 7.2.8.1 (string)

versionType : custom (string)

}

4 : { »

version : 7.1.0 (string)

status : affected (string)

lessThanOrEqual : 7.1.0.3 (string)

versionType : custom (string)

}

5 : { »

version : 7.0.0 (string)

status : affected (string)

lessThanOrEqual : 7.0.6.2 (string)

versionType : custom (string)

}

6 : { »

version : 6.7.0 (string)

status : affected (string)

lessThanOrEqual : 6.7.0.3 (string)

versionType : custom (string)

}

7 : { »

version : 6.6.0 (string)

status : affected (string)

lessThanOrEqual : 6.6.7.2 (string)

versionType : custom (string)

}

8 : { »

version : 6.4.0 (string)

status : affected (string)

lessThanOrEqual : 6.4.0.18 (string)

versionType : custom (string)

}

]

}

1 : { »

vendor : cisco (string)

product : adaptive_security_appliance_software (string)

cpes : [ »

0 : cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 9.8.1 (string)

status : affected (string)

lessThanOrEqual : 9.8.4.48 (string)

versionType : custom (string)

}

1 : { »

version : 9.20.2 (string)

status : affected (string)

lessThanOrEqual : 9.20.2.21 (string)

versionType : custom (string)

}

2 : { »

version : 9.19.1 (string)

status : affected (string)

lessThanOrEqual : 9.19.1.31 (string)

versionType : custom (string)

}

3 : { »

version : 9.18.1 (string)

status : affected (string)

lessThanOrEqual : 9.18.4.29 (string)

versionType : custom (string)

}

4 : { »

version : 9.17.1 (string)

status : affected (string)

lessThanOrEqual : 19.17.1.39 (string)

versionType : custom (string)

}

5 : { »

version : 9.16.1 (string)

status : affected (string)

lessThanOrEqual : 9.16.4.61 (string)

versionType : custom (string)

}

6 : { »

version : 9.15.1 (string)

status : affected (string)

lessThanOrEqual : 9.15.1.21 (string)

versionType : custom (string)

}

7 : { »

version : 9.14.1 (string)

status : affected (string)

lessThanOrEqual : 9.14.4.24 (string)

versionType : custom (string)

}

8 : { »

version : 9.12.1 (string)

status : affected (string)

lessThanOrEqual : 9.12.4.67 (string)

versionType : custom (string)

}

]

}

]

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

timestamp : 2024-10-23T18:42:51.960960Z (string)

id : CVE-2024-20260 (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : partial (string)

}

]

role : CISA Coordinator (string)

version : 2.0.3 (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-10-24T17:30:13.136Z (string)

}

]

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-20260", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-10-23T18:42:51.960960Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:*"], "vendor": "cisco", "product": "firepower_threat_defense_software", "versions": [{"status": "affected", "version": "6.2.3", "versionType": "custom", "lessThanOrEqual": "6.2.3.18"}, {"status": "affected", "version": "7.4.1", "versionType": "custom", "lessThanOrEqual": "7.4.1.1"}, {"status": "affected", "version": "7.3.0", "versionType": "custom", "lessThanOrEqual": "7.3.1.2"}, {"status": "affected", "version": "7.2.0", "versionType": "custom", "lessThanOrEqual": "7.2.8.1"}, {"status": "affected", "version": "7.1.0", "versionType": "custom", "lessThanOrEqual": "7.1.0.3"}, {"status": "affected", "version": "7.0.0", "versionType": "custom", "lessThanOrEqual": "7.0.6.2"}, {"status": "affected", "version": "6.7.0", "versionType": "custom", "lessThanOrEqual": "6.7.0.3"}, {"status": "affected", "version": "6.6.0", "versionType": "custom", "lessThanOrEqual": "6.6.7.2"}, {"status": "affected", "version": "6.4.0", "versionType": "custom", "lessThanOrEqual": "6.4.0.18"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*"], "vendor": "cisco", "product": "adaptive_security_appliance_software", "versions": [{"status": "affected", "version": "9.8.1", "versionType": "custom", "lessThanOrEqual": "9.8.4.48"}, {"status": "affected", "version": "9.20.2", "versionType": "custom", "lessThanOrEqual": "9.20.2.21"}, {"status": "affected", "version": "9.19.1", "versionType": "custom", "lessThanOrEqual": "9.19.1.31"}, {"status": "affected", "version": "9.18.1", "versionType": "custom", "lessThanOrEqual": "9.18.4.29"}, {"status": "affected", "version": "9.17.1", "versionType": "custom", "lessThanOrEqual": "19.17.1.39"}, {"status": "affected", "version": "9.16.1", "versionType": "custom", "lessThanOrEqual": "9.16.4.61"}, {"status": "affected", "version": "9.15.1", "versionType": "custom", "lessThanOrEqual": "9.15.1.21"}, {"status": "affected", "version": "9.14.1", "versionType": "custom", "lessThanOrEqual": "9.14.4.24"}, {"status": "affected", "version": "9.12.1", "versionType": "custom", "lessThanOrEqual": "9.12.4.67"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-23T19:22:20.171Z"}}], "cna": {"title": "Cisco Adaptive Security Virtual Appliance and Secure Firewall Threat Defense Virtual SSL VPN Denial of Service Vulnerability", "source": {"defects": ["CSCwe44099"], "advisory": "cisco-sa-asaftdvirtual-dos-MuenGnYR", "discovery": "INTERNAL"}, "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "Cisco", "product": "Cisco Adaptive Security Appliance (ASA) Software", "versions": [{"status": "affected", "version": "9.12.3"}, {"status": "affected", "version": "9.12.1"}, {"status": "affected", "version": "9.8.3"}, {"status": "affected", "version": "9.12.2"}, {"status": "affected", "version": "9.8.1"}, {"status": "affected", "version": "9.8.2"}, {"status": "affected", "version": "9.8.4"}, {"status": "affected", "version": "9.8.2.45"}, {"status": "affected", "version": "9.14.1"}, {"status": "affected", "version": "9.12.4"}, {"status": "affected", "version": "9.8.2.28"}, {"status": "affected", "version": "9.8.2.17"}, {"status": "affected", "version": "9.8.2.14"}, {"status": "affected", "version": "9.8.2.8"}, {"status": "affected", "version": "9.8.2.26"}, {"status": "affected", "version": "9.8.2.38"}, {"status": "affected", "version": "9.8.2.15"}, {"status": "affected", "version": "9.8.2.24"}, {"status": "affected", "version": "9.8.2.35"}, {"status": "affected", "version": "9.8.2.33"}, {"status": "affected", "version": "9.8.2.20"}, {"status": "affected", "version": "9.8.4.25"}, {"status": "affected", "version": "9.8.3.29"}, {"status": "affected", "version": "9.8.4.17"}, {"status": "affected", "version": "9.12.2.5"}, {"status": "affected", "version": "9.12.2.4"}, {"status": "affected", "version": "9.8.4.7"}, {"status": "affected", "version": "9.12.1.3"}, {"status": "affected", "version": "9.12.3.9"}, {"status": "affected", "version": "9.8.4.8"}, {"status": "affected", "version": "9.8.4.20"}, {"status": "affected", "version": "9.12.2.9"}, {"status": "affected", "version": "9.8.3.14"}, {"status": "affected", "version": "9.12.2.1"}, {"status": "affected", "version": "9.8.3.18"}, {"status": "affected", "version": "9.8.3.16"}, {"status": "affected", "version": "9.8.4.12"}, {"status": "affected", "version": "9.8.3.21"}, {"status": "affected", "version": "9.8.4.15"}, {"status": "affected", "version": "9.8.4.10"}, {"status": "affected", "version": "9.12.3.12"}, {"status": "affected", "version": "9.8.3.26"}, {"status": "affected", "version": "9.12.3.7"}, {"status": "affected", "version": "9.14.1.10"}, {"status": "affected", "version": "9.8.4.22"}, {"status": "affected", "version": "9.8.1.7"}, {"status": "affected", "version": "9.12.1.2"}, {"status": "affected", "version": "9.8.3.11"}, {"status": "affected", "version": "9.12.3.2"}, {"status": "affected", "version": "9.8.4.3"}, {"status": "affected", "version": "9.8.1.5"}, {"status": "affected", "version": "9.12.4.2"}, {"status": "affected", "version": "9.14.1.6"}, {"status": "affected", "version": "9.8.3.8"}, {"status": "affected", "version": "9.14.1.15"}, {"status": "affected", "version": "9.14.1.19"}, {"status": "affected", "version": "9.8.4.26"}, {"status": "affected", "version": "9.12.4.4"}, {"status": "affected", "version": "9.14.1.30"}, {"status": "affected", "version": "9.8.4.29"}, {"status": "affected", "version": "9.12.4.7"}, {"status": "affected", "version": "9.15.1"}, {"status": "affected", "version": "9.14.2"}, {"status": "affected", "version": "9.8.4.32"}, {"status": "affected", "version": "9.12.4.10"}, {"status": "affected", "version": "9.14.2.4"}, {"status": "affected", "version": "9.15.1.7"}, {"status": "affected", "version": "9.14.2.8"}, {"status": "affected", "version": "9.12.4.13"}, {"status": "affected", "version": "9.15.1.10"}, {"status": "affected", "version": "9.14.2.13"}, {"status": "affected", "version": "9.8.4.34"}, {"status": "affected", "version": "9.12.4.18"}, {"status": "affected", "version": "9.15.1.15"}, {"status": "affected", "version": "9.8.4.35"}, {"status": "affected", "version": "9.14.2.15"}, {"status": "affected", "version": "9.12.4.24"}, {"status": "affected", "version": "9.16.1"}, {"status": "affected", "version": "9.15.1.16"}, {"status": "affected", "version": "9.8.4.39"}, {"status": "affected", "version": "9.14.3"}, {"status": "affected", "version": "9.12.4.26"}, {"status": "affected", "version": "9.16.1.28"}, {"status": "affected", "version": "9.14.3.1"}, {"status": "affected", "version": "9.12.4.29"}, {"status": "affected", "version": "9.14.3.9"}, {"status": "affected", "version": "9.16.2"}, {"status": "affected", "version": "9.12.4.30"}, {"status": "affected", "version": "9.16.2.3"}, {"status": "affected", "version": "9.8.4.40"}, {"status": "affected", "version": "9.14.3.11"}, {"status": "affected", "version": "9.15.1.17"}, {"status": "affected", "version": "9.12.4.35"}, {"status": "affected", "version": "9.8.4.41"}, {"status": "affected", "version": "9.15.1.1"}, {"status": "affected", "version": "9.14.3.13"}, {"status": "affected", "version": "9.16.2.7"}, {"status": "affected", "version": "9.12.4.37"}, {"status": "affected", "version": "9.14.3.15"}, {"status": "affected", "version": "9.17.1"}, {"status": "affected", "version": "9.16.2.11"}, {"status": "affected", "version": "9.14.3.18"}, {"status": "affected", "version": "9.16.2.13"}, {"status": "affected", "version": "9.12.4.39"}, {"status": "affected", "version": "9.12.4.38"}, {"status": "affected", "version": "9.8.4.43"}, {"status": "affected", "version": "9.14.4"}, {"status": "affected", "version": "9.16.2.14"}, {"status": "affected", "version": "9.17.1.7"}, {"status": "affected", "version": "9.12.4.40"}, {"status": "affected", "version": "9.15.1.21"}, {"status": "affected", "version": "9.16.3.3"}, {"status": "affected", "version": "9.16.3"}, {"status": "affected", "version": "9.14.4.6"}, {"status": "affected", "version": "9.17.1.9"}, {"status": "affected", "version": "9.14.4.7"}, {"status": "affected", "version": "9.16.3.14"}, {"status": "affected", "version": "9.12.4.41"}, {"status": "affected", "version": "9.17.1.10"}, {"status": "affected", "version": "9.8.4.44"}, {"status": "affected", "version": "9.18.1"}, {"status": "affected", "version": "9.14.4.12"}, {"status": "affected", "version": "9.12.4.47"}, {"status": "affected", "version": "9.16.3.15"}, {"status": "affected", "version": "9.18.1.3"}, {"status": "affected", "version": "9.17.1.11"}, {"status": "affected", "version": "9.12.4.48"}, {"status": "affected", "version": "9.14.4.13"}, {"status": "affected", "version": "9.18.2"}, {"status": "affected", "version": "9.16.3.19"}, {"status": "affected", "version": "9.17.1.13"}, {"status": "affected", "version": "9.12.4.50"}, {"status": "affected", "version": "9.14.4.14"}, {"status": "affected", "version": "9.17.1.15"}, {"status": "affected", "version": "9.8.4.45"}, {"status": "affected", "version": "9.12.4.52"}, {"status": "affected", "version": "9.14.4.15"}, {"status": "affected", "version": "9.16.3.23"}, {"status": "affected", "version": "9.18.2.5"}, {"status": "affected", "version": "9.16.4"}, {"status": "affected", "version": "9.12.4.54"}, {"status": "affected", "version": "9.14.4.17"}, {"status": "affected", "version": "9.8.4.46"}, {"status": "affected", "version": "9.17.1.20"}, {"status": "affected", "version": "9.18.2.7"}, {"status": "affected", "version": "9.19.1"}, {"status": "affected", "version": "9.16.4.9"}, {"status": "affected", "version": "9.12.4.55"}, {"status": "affected", "version": "9.18.2.8"}, {"status": "affected", "version": "9.14.4.22"}, {"status": "affected", "version": "9.16.4.14"}, {"status": "affected", "version": "9.8.4.48"}, {"status": "affected", "version": "9.18.3"}, {"status": "affected", "version": "9.19.1.5"}, {"status": "affected", "version": "9.14.4.23"}, {"status": "affected", "version": "9.12.4.56"}, {"status": "affected", "version": "9.16.4.18"}, {"status": "affected", "version": "9.17.1.30"}, {"status": "affected", "version": "9.19.1.9"}, {"status": "affected", "version": "9.18.3.39"}, {"status": "affected", "version": "9.16.4.19"}, {"status": "affected", "version": "9.12.4.58"}, {"status": "affected", "version": "9.19.1.12"}, {"status": "affected", "version": "9.18.3.46"}, {"status": "affected", "version": "9.16.4.27"}, {"status": "affected", "version": "9.19.1.18"}, {"status": "affected", "version": "9.18.3.53"}, {"status": "affected", "version": "9.18.3.55"}, {"status": "affected", "version": "9.16.4.38"}, {"status": "affected", "version": "9.17.1.33"}, {"status": "affected", "version": "9.12.4.62"}, {"status": "affected", "version": "9.16.4.39"}, {"status": "affected", "version": "9.18.3.56"}, {"status": "affected", "version": "9.16.4.42"}, {"status": "affected", "version": "9.19.1.22"}, {"status": "affected", "version": "9.18.4"}, {"status": "affected", "version": "9.18.4.5"}, {"status": "affected", "version": "9.19.1.24"}, {"status": "affected", "version": "9.16.4.48"}, {"status": "affected", "version": "9.18.4.8"}, {"status": "affected", "version": "9.20.2"}, {"status": "affected", "version": "9.19.1.27"}, {"status": "affected", "version": "9.12.4.65"}, {"status": "affected", "version": "9.16.4.55"}, {"status": "affected", "version": "9.18.4.22"}, {"status": "affected", "version": "9.20.2.10"}, {"status": "affected", "version": "9.16.4.57"}, {"status": "affected", "version": "9.19.1.28"}, {"status": "affected", "version": "9.17.1.39"}, {"status": "affected", "version": "9.12.4.67"}, {"status": "affected", "version": "9.14.4.24"}, {"status": "affected", "version": "9.18.4.24"}, {"status": "affected", "version": "9.20.2.21"}, {"status": "affected", "version": "9.16.4.61"}, {"status": "affected", "version": "9.19.1.31"}, {"status": "affected", "version": "9.18.4.29"}], "defaultStatus": "unknown"}, {"vendor": "Cisco", "product": "Cisco Firepower Threat Defense Software", "versions": [{"status": "affected", "version": "6.2.3.7"}, {"status": "affected", "version": "6.4.0"}, {"status": "affected", "version": "6.4.0.1"}, {"status": "affected", "version": "6.2.3.15"}, {"status": "affected", "version": "6.2.3.5"}, {"status": "affected", "version": "6.2.3"}, {"status": "affected", "version": "6.2.3.4"}, {"status": "affected", "version": "6.2.3.10"}, {"status": "affected", "version": "6.4.0.4"}, {"status": "affected", "version": "6.4.0.6"}, {"status": "affected", "version": "6.4.0.5"}, {"status": "affected", "version": "6.2.3.13"}, {"status": "affected", "version": "6.2.3.2"}, {"status": "affected", "version": "6.4.0.2"}, {"status": "affected", "version": "6.2.3.14"}, {"status": "affected", "version": "6.2.3.8"}, {"status": "affected", "version": "6.2.3.3"}, {"status": "affected", "version": "6.2.3.1"}, {"status": "affected", "version": "6.2.3.12"}, {"status": "affected", "version": "6.2.3.11"}, {"status": "affected", "version": "6.2.3.6"}, {"status": "affected", "version": "6.4.0.3"}, {"status": "affected", "version": "6.2.3.9"}, {"status": "affected", "version": "6.4.0.8"}, {"status": "affected", "version": "6.4.0.7"}, {"status": "affected", "version": "6.6.0"}, {"status": "affected", "version": "6.4.0.9"}, {"status": "affected", "version": "6.2.3.16"}, {"status": "affected", "version": "6.6.0.1"}, {"status": "affected", "version": "6.6.1"}, {"status": "affected", "version": "6.4.0.10"}, {"status": "affected", "version": "6.7.0"}, {"status": "affected", "version": "6.4.0.11"}, {"status": "affected", "version": "6.6.3"}, {"status": "affected", "version": "6.7.0.1"}, {"status": "affected", "version": "6.6.4"}, {"status": "affected", "version": "6.4.0.12"}, {"status": "affected", "version": "6.7.0.2"}, {"status": "affected", "version": "7.0.0"}, {"status": "affected", "version": "6.2.3.17"}, {"status": "affected", "version": "7.0.0.1"}, {"status": "affected", "version": "6.6.5"}, {"status": "affected", "version": "7.0.1"}, {"status": "affected", "version": "7.1.0"}, {"status": "affected", "version": "6.4.0.13"}, {"status": "affected", "version": "6.6.5.1"}, {"status": "affected", "version": "6.2.3.18"}, {"status": "affected", "version": "7.0.1.1"}, {"status": "affected", "version": "6.7.0.3"}, {"status": "affected", "version": "6.4.0.14"}, {"status": "affected", "version": "7.1.0.1"}, {"status": "affected", "version": "6.6.5.2"}, {"status": "affected", "version": "7.0.2"}, {"status": "affected", "version": "6.4.0.15"}, {"status": "affected", "version": "7.2.0"}, {"status": "affected", "version": "7.0.2.1"}, {"status": "affected", "version": "7.0.3"}, {"status": "affected", "version": "6.6.7"}, {"status": "affected", "version": "7.2.0.1"}, {"status": "affected", "version": "7.0.4"}, {"status": "affected", "version": "7.2.1"}, {"status": "affected", "version": "7.0.5"}, {"status": "affected", "version": "6.4.0.16"}, {"status": "affected", "version": "7.3.0"}, {"status": "affected", "version": "7.2.2"}, {"status": "affected", "version": "6.6.7.1"}, {"status": "affected", "version": "7.2.3"}, {"status": "affected", "version": "7.3.1"}, {"status": "affected", "version": "7.1.0.3"}, {"status": "affected", "version": "7.2.4"}, {"status": "affected", "version": "7.0.6"}, {"status": "affected", "version": "7.2.5"}, {"status": "affected", "version": "7.2.4.1"}, {"status": "affected", "version": "7.3.1.1"}, {"status": "affected", "version": "6.4.0.17"}, {"status": "affected", "version": "7.0.6.1"}, {"status": "affected", "version": "7.2.5.1"}, {"status": "affected", "version": "7.4.1"}, {"status": "affected", "version": "7.2.6"}, {"status": "affected", "version": "7.0.6.2"}, {"status": "affected", "version": "7.4.1.1"}, {"status": "affected", "version": "6.6.7.2"}, {"status": "affected", "version": "6.4.0.18"}, {"status": "affected", "version": "7.2.7"}, {"status": "affected", "version": "7.2.5.2"}, {"status": "affected", "version": "7.3.1.2"}, {"status": "affected", "version": "7.2.8"}, {"status": "affected", "version": "7.2.8.1"}], "defaultStatus": "unknown"}], "exploits": [{"lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdvirtual-dos-MuenGnYR", "name": "cisco-sa-asaftdvirtual-dos-MuenGnYR"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the VPN and management web servers of the Cisco Adaptive Security Virtual Appliance (ASAv) and Cisco Secure Firewall Threat Defense Virtual (FTDv), formerly Cisco Firepower Threat Defense Virtual, platforms could allow an unauthenticated, remote attacker to cause the virtual devices to run out of system memory, which could cause SSL VPN connection processing to slow down and eventually cease all together.\r\n\r\nThis vulnerability is due to a lack of proper memory management for new incoming SSL/TLS connections on the virtual platforms. An attacker could exploit this vulnerability by sending a large number of new incoming SSL/TLS connections to the targeted virtual platform. A successful exploit could allow the attacker to deplete system memory,&nbsp;resulting in a denial of service (DoS) condition. The memory could be reclaimed slowly if the attack traffic is stopped, but a manual reload may be required to restore operations quickly."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-789", "description": "Uncontrolled Memory Allocation"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-10-23T17:07:17.073Z"}}}, "cveMetadata": {"cveId": "CVE-2024-20260", "state": "PUBLISHED", "dateUpdated": "2024-10-24T17:30:13.136Z", "dateReserved": "2023-11-08T15:08:07.623Z", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2024-10-23T17:07:17.073Z", "assignerShortName": "cisco"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2024-20260 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-10-23T18:42:51.960960Z (string)

}

]

affected : [ »

0 : { »

cpes : [ »

0 : cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:* (string)

]

vendor : cisco (string)

product : firepower_threat_defense_software (string)

versions : [ »

0 : { »

status : affected (string)

version : 6.2.3 (string)

versionType : custom (string)

lessThanOrEqual : 6.2.3.18 (string)

}

1 : { »

status : affected (string)

version : 7.4.1 (string)

versionType : custom (string)

lessThanOrEqual : 7.4.1.1 (string)

}

2 : { »

status : affected (string)

version : 7.3.0 (string)

versionType : custom (string)

lessThanOrEqual : 7.3.1.2 (string)

}

3 : { »

status : affected (string)

version : 7.2.0 (string)

versionType : custom (string)

lessThanOrEqual : 7.2.8.1 (string)

}

4 : { »

status : affected (string)

version : 7.1.0 (string)

versionType : custom (string)

lessThanOrEqual : 7.1.0.3 (string)

}

5 : { »

status : affected (string)

version : 7.0.0 (string)

versionType : custom (string)

lessThanOrEqual : 7.0.6.2 (string)

}

6 : { »

status : affected (string)

version : 6.7.0 (string)

versionType : custom (string)

lessThanOrEqual : 6.7.0.3 (string)

}

7 : { »

status : affected (string)

version : 6.6.0 (string)

versionType : custom (string)

lessThanOrEqual : 6.6.7.2 (string)

}

8 : { »

status : affected (string)

version : 6.4.0 (string)

versionType : custom (string)

lessThanOrEqual : 6.4.0.18 (string)

}

]

defaultStatus : unknown (string)

}

1 : { »

cpes : [ »

0 : cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:* (string)

]

vendor : cisco (string)

product : adaptive_security_appliance_software (string)

versions : [ »

0 : { »

status : affected (string)

version : 9.8.1 (string)

versionType : custom (string)

lessThanOrEqual : 9.8.4.48 (string)

}

1 : { »

status : affected (string)

version : 9.20.2 (string)

versionType : custom (string)

lessThanOrEqual : 9.20.2.21 (string)

}

2 : { »

status : affected (string)

version : 9.19.1 (string)

versionType : custom (string)

lessThanOrEqual : 9.19.1.31 (string)

}

3 : { »

status : affected (string)

version : 9.18.1 (string)

versionType : custom (string)

lessThanOrEqual : 9.18.4.29 (string)

}

4 : { »

status : affected (string)

version : 9.17.1 (string)

versionType : custom (string)

lessThanOrEqual : 19.17.1.39 (string)

}

5 : { »

status : affected (string)

version : 9.16.1 (string)

versionType : custom (string)

lessThanOrEqual : 9.16.4.61 (string)

}

6 : { »

status : affected (string)

version : 9.15.1 (string)

versionType : custom (string)

lessThanOrEqual : 9.15.1.21 (string)

}

7 : { »

status : affected (string)

version : 9.14.1 (string)

versionType : custom (string)

lessThanOrEqual : 9.14.4.24 (string)

}

8 : { »

status : affected (string)

version : 9.12.1 (string)

versionType : custom (string)

lessThanOrEqual : 9.12.4.67 (string)

}

]

defaultStatus : unknown (string)

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-10-23T19:22:20.171Z (string)

}

]

cna : { »

title : Cisco Adaptive Security Virtual Appliance and Secure Firewall Threat Defense Virtual SSL VPN Denial of Service Vulnerability (string)

source : { »

defects : [ »

0 : CSCwe44099 (string)

]

advisory : cisco-sa-asaftdvirtual-dos-MuenGnYR (string)

discovery : INTERNAL (string)

}

metrics : [ »

0 : { »

format : cvssV3_1 (string)

cvssV3_1 : { »

scope : CHANGED (string)

version : 3.1 (string)

baseScore : 8.6 (number)

attackVector : NETWORK (string)

baseSeverity : HIGH (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H (string)

integrityImpact : NONE (string)

userInteraction : NONE (string)

attackComplexity : LOW (string)

availabilityImpact : HIGH (string)

privilegesRequired : NONE (string)

confidentialityImpact : NONE (string)

}

]

affected : [ »

0 : { »

vendor : Cisco (string)

product : Cisco Adaptive Security Appliance (ASA) Software (string)

versions : [ »

0 : { »

status : affected (string)

version : 9.12.3 (string)

}

1 : { »

status : affected (string)

version : 9.12.1 (string)

}

2 : { »

status : affected (string)

version : 9.8.3 (string)

}

3 : { »

status : affected (string)

version : 9.12.2 (string)

}

4 : { »

status : affected (string)

version : 9.8.1 (string)

}

5 : { »

status : affected (string)

version : 9.8.2 (string)

}

6 : { »

status : affected (string)

version : 9.8.4 (string)

}

7 : { »

status : affected (string)

version : 9.8.2.45 (string)

}

8 : { »

status : affected (string)

version : 9.14.1 (string)

}

9 : { »

status : affected (string)

version : 9.12.4 (string)

}

10 : { »

status : affected (string)

version : 9.8.2.28 (string)

}

11 : { »

status : affected (string)

version : 9.8.2.17 (string)

}

12 : { »

status : affected (string)

version : 9.8.2.14 (string)

}

13 : { »

status : affected (string)

version : 9.8.2.8 (string)

}

14 : { »

status : affected (string)

version : 9.8.2.26 (string)

}

15 : { »

status : affected (string)

version : 9.8.2.38 (string)

}

16 : { »

status : affected (string)

version : 9.8.2.15 (string)

}

17 : { »

status : affected (string)

version : 9.8.2.24 (string)

}

18 : { »

status : affected (string)

version : 9.8.2.35 (string)

}

19 : { »

status : affected (string)

version : 9.8.2.33 (string)

}

20 : { »

status : affected (string)

version : 9.8.2.20 (string)

}

21 : { »

status : affected (string)

version : 9.8.4.25 (string)

}

22 : { »

status : affected (string)

version : 9.8.3.29 (string)

}

23 : { »

status : affected (string)

version : 9.8.4.17 (string)

}

24 : { »

status : affected (string)

version : 9.12.2.5 (string)

}

25 : { »

status : affected (string)

version : 9.12.2.4 (string)

}

26 : { »

status : affected (string)

version : 9.8.4.7 (string)

}

27 : { »

status : affected (string)

version : 9.12.1.3 (string)

}

28 : { »

status : affected (string)

version : 9.12.3.9 (string)

}

29 : { »

status : affected (string)

version : 9.8.4.8 (string)

}

30 : { »

status : affected (string)

version : 9.8.4.20 (string)

}

31 : { »

status : affected (string)

version : 9.12.2.9 (string)

}

32 : { »

status : affected (string)

version : 9.8.3.14 (string)

}

33 : { »

status : affected (string)

version : 9.12.2.1 (string)

}

34 : { »

status : affected (string)

version : 9.8.3.18 (string)

}

35 : { »

status : affected (string)

version : 9.8.3.16 (string)

}

36 : { »

status : affected (string)

version : 9.8.4.12 (string)

}

37 : { »

status : affected (string)

version : 9.8.3.21 (string)

}

38 : { »

status : affected (string)

version : 9.8.4.15 (string)

}

39 : { »

status : affected (string)

version : 9.8.4.10 (string)

}

40 : { »

status : affected (string)

version : 9.12.3.12 (string)

}

41 : { »

status : affected (string)

version : 9.8.3.26 (string)

}

42 : { »

status : affected (string)

version : 9.12.3.7 (string)

}

43 : { »

status : affected (string)

version : 9.14.1.10 (string)

}

44 : { »

status : affected (string)

version : 9.8.4.22 (string)

}

45 : { »

status : affected (string)

version : 9.8.1.7 (string)

}

46 : { »

status : affected (string)

version : 9.12.1.2 (string)

}

47 : { »

status : affected (string)

version : 9.8.3.11 (string)

}

48 : { »

status : affected (string)

version : 9.12.3.2 (string)

}

49 : { »

status : affected (string)

version : 9.8.4.3 (string)

}

50 : { »

status : affected (string)

version : 9.8.1.5 (string)

}

51 : { »

status : affected (string)

version : 9.12.4.2 (string)

}

52 : { »

status : affected (string)

version : 9.14.1.6 (string)

}

53 : { »

status : affected (string)

version : 9.8.3.8 (string)

}

54 : { »

status : affected (string)

version : 9.14.1.15 (string)

}

55 : { »

status : affected (string)

version : 9.14.1.19 (string)

}

56 : { »

status : affected (string)

version : 9.8.4.26 (string)

}

57 : { »

status : affected (string)

version : 9.12.4.4 (string)

}

58 : { »

status : affected (string)

version : 9.14.1.30 (string)

}

59 : { »

status : affected (string)

version : 9.8.4.29 (string)

}

60 : { »

status : affected (string)

version : 9.12.4.7 (string)

}

61 : { »

status : affected (string)

version : 9.15.1 (string)

}

62 : { »

status : affected (string)

version : 9.14.2 (string)

}

63 : { »

status : affected (string)

version : 9.8.4.32 (string)

}

64 : { »

status : affected (string)

version : 9.12.4.10 (string)

}

65 : { »

status : affected (string)

version : 9.14.2.4 (string)

}

66 : { »

status : affected (string)

version : 9.15.1.7 (string)

}

67 : { »

status : affected (string)

version : 9.14.2.8 (string)

}

68 : { »

status : affected (string)

version : 9.12.4.13 (string)

}

69 : { »

status : affected (string)

version : 9.15.1.10 (string)

}

70 : { »

status : affected (string)

version : 9.14.2.13 (string)

}

71 : { »

status : affected (string)

version : 9.8.4.34 (string)

}

72 : { »

status : affected (string)

version : 9.12.4.18 (string)

}

73 : { »

status : affected (string)

version : 9.15.1.15 (string)

}

74 : { »

status : affected (string)

version : 9.8.4.35 (string)

}

75 : { »

status : affected (string)

version : 9.14.2.15 (string)

}

76 : { »

status : affected (string)

version : 9.12.4.24 (string)

}

77 : { »

status : affected (string)

version : 9.16.1 (string)

}

78 : { »

status : affected (string)

version : 9.15.1.16 (string)

}

79 : { »

status : affected (string)

version : 9.8.4.39 (string)

}

80 : { »

status : affected (string)

version : 9.14.3 (string)

}

81 : { »

status : affected (string)

version : 9.12.4.26 (string)

}

82 : { »

status : affected (string)

version : 9.16.1.28 (string)

}

83 : { »

status : affected (string)

version : 9.14.3.1 (string)

}

84 : { »

status : affected (string)

version : 9.12.4.29 (string)

}

85 : { »

status : affected (string)

version : 9.14.3.9 (string)

}

86 : { »

status : affected (string)

version : 9.16.2 (string)

}

87 : { »

status : affected (string)

version : 9.12.4.30 (string)

}

88 : { »

status : affected (string)

version : 9.16.2.3 (string)

}

89 : { »

status : affected (string)

version : 9.8.4.40 (string)

}

90 : { »

status : affected (string)

version : 9.14.3.11 (string)

}

91 : { »

status : affected (string)

version : 9.15.1.17 (string)

}

92 : { »

status : affected (string)

version : 9.12.4.35 (string)

}

93 : { »

status : affected (string)

version : 9.8.4.41 (string)

}

94 : { »

status : affected (string)

version : 9.15.1.1 (string)

}

95 : { »

status : affected (string)

version : 9.14.3.13 (string)

}

96 : { »

status : affected (string)

version : 9.16.2.7 (string)

}

97 : { »

status : affected (string)

version : 9.12.4.37 (string)

}

98 : { »

status : affected (string)

version : 9.14.3.15 (string)

}

99 : { »

status : affected (string)

version : 9.17.1 (string)

}

100 : { »

status : affected (string)

version : 9.16.2.11 (string)

}

101 : { »

status : affected (string)

version : 9.14.3.18 (string)

}

102 : { »

status : affected (string)

version : 9.16.2.13 (string)

}

103 : { »

status : affected (string)

version : 9.12.4.39 (string)

}

104 : { »

status : affected (string)

version : 9.12.4.38 (string)

}

105 : { »

status : affected (string)

version : 9.8.4.43 (string)

}

106 : { »

status : affected (string)

version : 9.14.4 (string)

}

107 : { »

status : affected (string)

version : 9.16.2.14 (string)

}

108 : { »

status : affected (string)

version : 9.17.1.7 (string)

}

109 : { »

status : affected (string)

version : 9.12.4.40 (string)

}

110 : { »

status : affected (string)

version : 9.15.1.21 (string)

}

111 : { »

status : affected (string)

version : 9.16.3.3 (string)

}

112 : { »

status : affected (string)

version : 9.16.3 (string)

}

113 : { »

status : affected (string)

version : 9.14.4.6 (string)

}

114 : { »

status : affected (string)

version : 9.17.1.9 (string)

}

115 : { »

status : affected (string)

version : 9.14.4.7 (string)

}

116 : { »

status : affected (string)

version : 9.16.3.14 (string)

}

117 : { »

status : affected (string)

version : 9.12.4.41 (string)

}

118 : { »

status : affected (string)

version : 9.17.1.10 (string)

}

119 : { »

status : affected (string)

version : 9.8.4.44 (string)

}

120 : { »

status : affected (string)

version : 9.18.1 (string)

}

121 : { »

status : affected (string)

version : 9.14.4.12 (string)

}

122 : { »

status : affected (string)

version : 9.12.4.47 (string)

}

123 : { »

status : affected (string)

version : 9.16.3.15 (string)

}

124 : { »

status : affected (string)

version : 9.18.1.3 (string)

}

125 : { »

status : affected (string)

version : 9.17.1.11 (string)

}

126 : { »

status : affected (string)

version : 9.12.4.48 (string)

}

127 : { »

status : affected (string)

version : 9.14.4.13 (string)

}

128 : { »

status : affected (string)

version : 9.18.2 (string)

}

129 : { »

status : affected (string)

version : 9.16.3.19 (string)

}

130 : { »

status : affected (string)

version : 9.17.1.13 (string)

}

131 : { »

status : affected (string)

version : 9.12.4.50 (string)

}

132 : { »

status : affected (string)

version : 9.14.4.14 (string)

}

133 : { »

status : affected (string)

version : 9.17.1.15 (string)

}

134 : { »

status : affected (string)

version : 9.8.4.45 (string)

}

135 : { »

status : affected (string)

version : 9.12.4.52 (string)

}

136 : { »

status : affected (string)

version : 9.14.4.15 (string)

}

137 : { »

status : affected (string)

version : 9.16.3.23 (string)

}

138 : { »

status : affected (string)

version : 9.18.2.5 (string)

}

139 : { »

status : affected (string)

version : 9.16.4 (string)

}

140 : { »

status : affected (string)

version : 9.12.4.54 (string)

}

141 : { »

status : affected (string)

version : 9.14.4.17 (string)

}

142 : { »

status : affected (string)

version : 9.8.4.46 (string)

}

143 : { »

status : affected (string)

version : 9.17.1.20 (string)

}

144 : { »

status : affected (string)

version : 9.18.2.7 (string)

}

145 : { »

status : affected (string)

version : 9.19.1 (string)

}

146 : { »

status : affected (string)

version : 9.16.4.9 (string)

}

147 : { »

status : affected (string)

version : 9.12.4.55 (string)

}

148 : { »

status : affected (string)

version : 9.18.2.8 (string)

}

149 : { »

status : affected (string)

version : 9.14.4.22 (string)

}

150 : { »

status : affected (string)

version : 9.16.4.14 (string)

}

151 : { »

status : affected (string)

version : 9.8.4.48 (string)

}

152 : { »

status : affected (string)

version : 9.18.3 (string)

}

153 : { »

status : affected (string)

version : 9.19.1.5 (string)

}

154 : { »

status : affected (string)

version : 9.14.4.23 (string)

}

155 : { »

status : affected (string)

version : 9.12.4.56 (string)

}

156 : { »

status : affected (string)

version : 9.16.4.18 (string)

}

157 : { »

status : affected (string)

version : 9.17.1.30 (string)

}

158 : { »

status : affected (string)

version : 9.19.1.9 (string)

}

159 : { »

status : affected (string)

version : 9.18.3.39 (string)

}

160 : { »

status : affected (string)

version : 9.16.4.19 (string)

}

161 : { »

status : affected (string)

version : 9.12.4.58 (string)

}

162 : { »

status : affected (string)

version : 9.19.1.12 (string)

}

163 : { »

status : affected (string)

version : 9.18.3.46 (string)

}

164 : { »

status : affected (string)

version : 9.16.4.27 (string)

}

165 : { »

status : affected (string)

version : 9.19.1.18 (string)

}

166 : { »

status : affected (string)

version : 9.18.3.53 (string)

}

167 : { »

status : affected (string)

version : 9.18.3.55 (string)

}

168 : { »

status : affected (string)

version : 9.16.4.38 (string)

}

169 : { »

status : affected (string)

version : 9.17.1.33 (string)

}

170 : { »

status : affected (string)

version : 9.12.4.62 (string)

}

171 : { »

status : affected (string)

version : 9.16.4.39 (string)

}

172 : { »

status : affected (string)

version : 9.18.3.56 (string)

}

173 : { »

status : affected (string)

version : 9.16.4.42 (string)

}

174 : { »

status : affected (string)

version : 9.19.1.22 (string)

}

175 : { »

status : affected (string)

version : 9.18.4 (string)

}

176 : { »

status : affected (string)

version : 9.18.4.5 (string)

}

177 : { »

status : affected (string)

version : 9.19.1.24 (string)

}

178 : { »

status : affected (string)

version : 9.16.4.48 (string)

}

179 : { »

status : affected (string)

version : 9.18.4.8 (string)

}

180 : { »

status : affected (string)

version : 9.20.2 (string)

}

181 : { »

status : affected (string)

version : 9.19.1.27 (string)

}

182 : { »

status : affected (string)

version : 9.12.4.65 (string)

}

183 : { »

status : affected (string)

version : 9.16.4.55 (string)

}

184 : { »

status : affected (string)

version : 9.18.4.22 (string)

}

185 : { »

status : affected (string)

version : 9.20.2.10 (string)

}

186 : { »

status : affected (string)

version : 9.16.4.57 (string)

}

187 : { »

status : affected (string)

version : 9.19.1.28 (string)

}

188 : { »

status : affected (string)

version : 9.17.1.39 (string)

}

189 : { »

status : affected (string)

version : 9.12.4.67 (string)

}

190 : { »

status : affected (string)

version : 9.14.4.24 (string)

}

191 : { »

status : affected (string)

version : 9.18.4.24 (string)

}

192 : { »

status : affected (string)

version : 9.20.2.21 (string)

}

193 : { »

status : affected (string)

version : 9.16.4.61 (string)

}

194 : { »

status : affected (string)

version : 9.19.1.31 (string)

}

195 : { »

status : affected (string)

version : 9.18.4.29 (string)

}

]

defaultStatus : unknown (string)

}

1 : { »

vendor : Cisco (string)

product : Cisco Firepower Threat Defense Software (string)

versions : [ »

0 : { »

status : affected (string)

version : 6.2.3.7 (string)

}

1 : { »

status : affected (string)

version : 6.4.0 (string)

}

2 : { »

status : affected (string)

version : 6.4.0.1 (string)

}

3 : { »

status : affected (string)

version : 6.2.3.15 (string)

}

4 : { »

status : affected (string)

version : 6.2.3.5 (string)

}

5 : { »

status : affected (string)

version : 6.2.3 (string)

}

6 : { »

status : affected (string)

version : 6.2.3.4 (string)

}

7 : { »

status : affected (string)

version : 6.2.3.10 (string)

}

8 : { »

status : affected (string)

version : 6.4.0.4 (string)

}

9 : { »

status : affected (string)

version : 6.4.0.6 (string)

}

10 : { »

status : affected (string)

version : 6.4.0.5 (string)

}

11 : { »

status : affected (string)

version : 6.2.3.13 (string)

}

12 : { »

status : affected (string)

version : 6.2.3.2 (string)

}

13 : { »

status : affected (string)

version : 6.4.0.2 (string)

}

14 : { »

status : affected (string)

version : 6.2.3.14 (string)

}

15 : { »

status : affected (string)

version : 6.2.3.8 (string)

}

16 : { »

status : affected (string)

version : 6.2.3.3 (string)

}

17 : { »

status : affected (string)

version : 6.2.3.1 (string)

}

18 : { »

status : affected (string)

version : 6.2.3.12 (string)

}

19 : { »

status : affected (string)

version : 6.2.3.11 (string)

}

20 : { »

status : affected (string)

version : 6.2.3.6 (string)

}

21 : { »

status : affected (string)

version : 6.4.0.3 (string)

}

22 : { »

status : affected (string)

version : 6.2.3.9 (string)

}

23 : { »

status : affected (string)

version : 6.4.0.8 (string)

}

24 : { »

status : affected (string)

version : 6.4.0.7 (string)

}

25 : { »

status : affected (string)

version : 6.6.0 (string)

}

26 : { »

status : affected (string)

version : 6.4.0.9 (string)

}

27 : { »

status : affected (string)

version : 6.2.3.16 (string)

}

28 : { »

status : affected (string)

version : 6.6.0.1 (string)

}

29 : { »

status : affected (string)

version : 6.6.1 (string)

}

30 : { »

status : affected (string)

version : 6.4.0.10 (string)

}

31 : { »

status : affected (string)

version : 6.7.0 (string)

}

32 : { »

status : affected (string)

version : 6.4.0.11 (string)

}

33 : { »

status : affected (string)

version : 6.6.3 (string)

}

34 : { »

status : affected (string)

version : 6.7.0.1 (string)

}

35 : { »

status : affected (string)

version : 6.6.4 (string)

}

36 : { »

status : affected (string)

version : 6.4.0.12 (string)

}

37 : { »

status : affected (string)

version : 6.7.0.2 (string)

}

38 : { »

status : affected (string)

version : 7.0.0 (string)

}

39 : { »

status : affected (string)

version : 6.2.3.17 (string)

}

40 : { »

status : affected (string)

version : 7.0.0.1 (string)

}

41 : { »

status : affected (string)

version : 6.6.5 (string)

}

42 : { »

status : affected (string)

version : 7.0.1 (string)

}

43 : { »

status : affected (string)

version : 7.1.0 (string)

}

44 : { »

status : affected (string)

version : 6.4.0.13 (string)

}

45 : { »

status : affected (string)

version : 6.6.5.1 (string)

}

46 : { »

status : affected (string)

version : 6.2.3.18 (string)

}

47 : { »

status : affected (string)

version : 7.0.1.1 (string)

}

48 : { »

status : affected (string)

version : 6.7.0.3 (string)

}

49 : { »

status : affected (string)

version : 6.4.0.14 (string)

}

50 : { »

status : affected (string)

version : 7.1.0.1 (string)

}

51 : { »

status : affected (string)

version : 6.6.5.2 (string)

}

52 : { »

status : affected (string)

version : 7.0.2 (string)

}

53 : { »

status : affected (string)

version : 6.4.0.15 (string)

}

54 : { »

status : affected (string)

version : 7.2.0 (string)

}

55 : { »

status : affected (string)

version : 7.0.2.1 (string)

}

56 : { »

status : affected (string)

version : 7.0.3 (string)

}

57 : { »

status : affected (string)

version : 6.6.7 (string)

}

58 : { »

status : affected (string)

version : 7.2.0.1 (string)

}

59 : { »

status : affected (string)

version : 7.0.4 (string)

}

60 : { »

status : affected (string)

version : 7.2.1 (string)

}

61 : { »

status : affected (string)

version : 7.0.5 (string)

}

62 : { »

status : affected (string)

version : 6.4.0.16 (string)

}

63 : { »

status : affected (string)

version : 7.3.0 (string)

}

64 : { »

status : affected (string)

version : 7.2.2 (string)

}

65 : { »

status : affected (string)

version : 6.6.7.1 (string)

}

66 : { »

status : affected (string)

version : 7.2.3 (string)

}

67 : { »

status : affected (string)

version : 7.3.1 (string)

}

68 : { »

status : affected (string)

version : 7.1.0.3 (string)

}

69 : { »

status : affected (string)

version : 7.2.4 (string)

}

70 : { »

status : affected (string)

version : 7.0.6 (string)

}

71 : { »

status : affected (string)

version : 7.2.5 (string)

}

72 : { »

status : affected (string)

version : 7.2.4.1 (string)

}

73 : { »

status : affected (string)

version : 7.3.1.1 (string)

}

74 : { »

status : affected (string)

version : 6.4.0.17 (string)

}

75 : { »

status : affected (string)

version : 7.0.6.1 (string)

}

76 : { »

status : affected (string)

version : 7.2.5.1 (string)

}

77 : { »

status : affected (string)

version : 7.4.1 (string)

}

78 : { »

status : affected (string)

version : 7.2.6 (string)

}

79 : { »

status : affected (string)

version : 7.0.6.2 (string)

}

80 : { »

status : affected (string)

version : 7.4.1.1 (string)

}

81 : { »

status : affected (string)

version : 6.6.7.2 (string)

}

82 : { »

status : affected (string)

version : 6.4.0.18 (string)

}

83 : { »

status : affected (string)

version : 7.2.7 (string)

}

84 : { »

status : affected (string)

version : 7.2.5.2 (string)

}

85 : { »

status : affected (string)

version : 7.3.1.2 (string)

}

86 : { »

status : affected (string)

version : 7.2.8 (string)

}

87 : { »

status : affected (string)

version : 7.2.8.1 (string)

}

]

defaultStatus : unknown (string)

}

]

exploits : [ »

0 : { »

lang : en (string)

value : The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. (string)

}

]

references : [ »

0 : { »

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdvirtual-dos-MuenGnYR (string)

name : cisco-sa-asaftdvirtual-dos-MuenGnYR (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

type : cwe (string)

cweId : CWE-789 (string)

description : Uncontrolled Memory Allocation (string)

}

]

}

]

providerMetadata : { »

orgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

shortName : cisco (string)

dateUpdated : 2024-10-23T17:07:17.073Z (string)

}

cveMetadata : { »

cveId : CVE-2024-20260 (string)

state : PUBLISHED (string)

dateUpdated : 2024-10-24T17:30:13.136Z (string)

dateReserved : 2023-11-08T15:08:07.623Z (string)

assignerOrgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

datePublished : 2024-10-23T17:07:17.073Z (string)

assignerShortName : cisco (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the VPN and management web servers of the Cisco Adaptive Security Virtual Appliance (ASAv) and Cisco Secure Firewall Threat Defense Virtual (FTDv), formerly Cisco Firepower Threat Defense Virtual, platforms could allow an unauthenticated, remote attacker to cause the virtual devices to run out of system memory, which could cause SSL VPN connection processing to slow down and eventually cease all together.\r\n\r\nThis vulnerability is due to a lack of proper memory management for new incoming SSL/TLS connections on the virtual platforms. An attacker could exploit this vulnerability by sending a large number of new incoming SSL/TLS connections to the targeted virtual platform. A successful exploit could allow the attacker to deplete system memory,&nbsp;resulting in a denial of service (DoS) condition. The memory could be reclaimed slowly if the attack traffic is stopped, but a manual reload may be required to restore operations quickly."}, {"lang": "es", "value": "Una vulnerabilidad en los servidores web de administraci\u00f3n y VPN de las plataformas Cisco Adaptive Security Virtual Appliance (ASAv) y Cisco Secure Firewall Threat Defense Virtual (FTDv), anteriormente Cisco Firepower Threat Defense Virtual, podr\u00eda permitir que un atacante remoto no autenticado provoque que los dispositivos virtuales se queden sin memoria del sistema, lo que podr\u00eda hacer que el procesamiento de la conexi\u00f3n SSL VPN se ralentice y, finalmente, cese por completo. Esta vulnerabilidad se debe a la falta de una administraci\u00f3n de memoria adecuada para las nuevas conexiones SSL/TLS entrantes en las plataformas virtuales. Un atacante podr\u00eda explotar esta vulnerabilidad enviando una gran cantidad de nuevas conexiones SSL/TLS entrantes a la plataforma virtual de destino. Una explotaci\u00f3n exitosa podr\u00eda permitir al atacante agotar la memoria del sistema, lo que dar\u00eda como resultado una condici\u00f3n de denegaci\u00f3n de servicio (DoS). La memoria podr\u00eda recuperarse lentamente si se detiene el tr\u00e1fico del ataque, pero puede ser necesaria una recarga manual para restaurar las operaciones r\u00e1pidamente."}], "id": "CVE-2024-20260", "lastModified": "2024-10-25T12:56:36.827", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 4.0, "source": "ykramarz@cisco.com", "type": "Secondary"}]}, "published": "2024-10-23T17:15:13.950", "references": [{"source": "ykramarz@cisco.com", "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdvirtual-dos-MuenGnYR"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-789"}], "source": "ykramarz@cisco.com", "type": "Secondary"}]}

{

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

}

1 : { »

lang : es (string)

value : Una vulnerabilidad en los servidores web de administración y VPN de las plataformas Cisco Adaptive Security Virtual Appliance (ASAv) y Cisco Secure Firewall Threat Defense Virtual (FTDv), anteriormente Cisco Firepower Threat Defense Virtual, podría permitir que un atacante remoto no autenticado provoque que los dispositivos virtuales se queden sin memoria del sistema, lo que podría hacer que el procesamiento de la conexión SSL VPN se ralentice y, finalmente, cese por completo. Esta vulnerabilidad se debe a la falta de una administración de memoria adecuada para las nuevas conexiones SSL/TLS entrantes en las plataformas virtuales. Un atacante podría explotar esta vulnerabilidad enviando una gran cantidad de nuevas conexiones SSL/TLS entrantes a la plataforma virtual de destino. Una explotación exitosa podría permitir al atacante agotar la memoria del sistema, lo que daría como resultado una condición de denegación de servicio (DoS). La memoria podría recuperarse lentamente si se detiene el tráfico del ataque, pero puede ser necesaria una recarga manual para restaurar las operaciones rápidamente. (string)

}

]

id : CVE-2024-20260 (string)

lastModified : 2024-10-25T12:56:36.827 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 8.6 (number)

baseSeverity : HIGH (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : CHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 4 (number)

source : ykramarz@cisco.com (string)

type : Secondary (string)

}

]

}

published : 2024-10-23T17:15:13.950 (string)

references : [ »

0 : { »

source : ykramarz@cisco.com (string)

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftdvirtual-dos-MuenGnYR (string)

}

]

sourceIdentifier : ykramarz@cisco.com (string)

vulnStatus : Awaiting Analysis (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-789 (string)

}

]

source : ykramarz@cisco.com (string)

type : Secondary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object