CVE-2023-20275

MEDIUM

Cisco ASA/FTD - Privilege Escalation

Title source: llm

Description

A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to send packets with another VPN user's source IP address. This vulnerability is due to improper validation of the packet's inner source IP address after decryption. An attacker could exploit this vulnerability by sending crafted packets through the tunnel. A successful exploit could allow the attacker to send a packet impersonating another VPN user's IP address. It is not possible for the attacker to receive return packets.

References (1)

Scores

CVSS v3 4.1
EPSS 0.0008
EPSS Percentile 23.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:N

Classification

CWE
CWE-346
Status published

Affected Products (50)

cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
cisco/adaptive_security_appliance_software
... and 35 more

Timeline

Published Dec 12, 2023
Tracked Since Feb 18, 2026