CVE-2023-20086

HIGH

Cisco ASA/FTD - DoS

Title source: llm

Description

A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due to improper processing of ICMPv6 messages. An attacker could exploit this vulnerability by sending crafted ICMPv6 messages to a targeted Cisco ASA or FTD system with IPv6 enabled. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

References (1)

Scores

CVSS v3 8.6
EPSS 0.0054
EPSS Percentile 67.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Classification

CWE
CWE-248
Status published

Affected Products (50)

cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
... and 35 more

Timeline

Published Nov 01, 2023
Tracked Since Feb 18, 2026