Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2024-20494

Disclosure Date: October 23, 2024
CVE-2024-20494
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

A vulnerability in the TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition.

This vulnerability is due to improper data validation during the TLS 1.3 handshake. An attacker could exploit this vulnerability by sending a crafted TLS 1.3 packet to an affected system through a TLS 1.3-enabled listening socket. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

Note: This vulnerability can also impact the integrity of a device by causing VPN HostScan communication failures or file transfer failures when Cisco ASA Software is upgraded using Cisco Adaptive Security Device Manager (ASDM).

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
Cisco Adaptive Security Appliance (ASA) Software 9.19.1
Cisco Adaptive Security Appliance (ASA) Software 9.19.1.5
Cisco Adaptive Security Appliance (ASA) Software 9.19.1.9
Cisco Adaptive Security Appliance (ASA) Software 9.19.1.12
Cisco Adaptive Security Appliance (ASA) Software 9.19.1.18
Cisco Adaptive Security Appliance (ASA) Software 9.19.1.22
Cisco Adaptive Security Appliance (ASA) Software 9.19.1.24
Cisco Adaptive Security Appliance (ASA) Software 9.19.1.27
Cisco Adaptive Security Appliance (ASA) Software 9.19.1.28
Cisco Adaptive Security Appliance (ASA) Software 9.19.1.31
Cisco Adaptive Security Appliance (ASA) Software 9.20.1
Cisco Adaptive Security Appliance (ASA) Software 9.20.1.5
Cisco Adaptive Security Appliance (ASA) Software 9.20.2
Cisco Adaptive Security Appliance (ASA) Software 9.20.2.10
Cisco Adaptive Security Appliance (ASA) Software 9.20.2.21
Cisco Adaptive Security Appliance (ASA) Software 9.20.2.22
Cisco Adaptive Security Appliance (ASA) Software 9.20.3
Cisco Firepower Threat Defense Software 7.3.0
Cisco Firepower Threat Defense Software 7.3.1
Cisco Firepower Threat Defense Software 7.3.1.1
Cisco Firepower Threat Defense Software 7.3.1.2
Cisco Firepower Threat Defense Software 7.4.0
Cisco Firepower Threat Defense Software 7.4.1
Cisco Firepower Threat Defense Software 7.4.1.1
Cisco Firepower Threat Defense Software 7.4.2
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • Cisco

Products

  • Cisco Adaptive Security Appliance (ASA) Software,
  • Cisco Firepower Threat Defense Software

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis