CVE-2026-20064

MEDIUM

Cisco Secure Firewall FTD - DoS

Title source: llm

Description

A vulnerability in of Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, local attacker to cause the device to unexpectedly reload, causing a denial of service (DoS) condition. This vulnerability is due to improper validation of user-supplied input. An attacker with a low-privileged account could exploit this vulnerability by using crafted commands at the CLI prompt. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

References (1)

[Vendor Advisory] https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-cmd-inj-mTzGZexf

Scores

CVSS v3 6.5

EPSS 0.0003

EPSS Percentile 8.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (50)

cisco/firepower_threat_defense_software 6.2.3

cisco/firepower_threat_defense_software 6.4.0

cisco/firepower_threat_defense_software 6.4.0.1

cisco/firepower_threat_defense_software 6.4.0.2

cisco/firepower_threat_defense_software 6.4.0.3

cisco/firepower_threat_defense_software 6.4.0.4

cisco/firepower_threat_defense_software 6.4.0.5

cisco/firepower_threat_defense_software 6.4.0.6

cisco/firepower_threat_defense_software 6.4.0.7

cisco/firepower_threat_defense_software 6.4.0.8

... and 40 more

Published Mar 04, 2026

Tracked Since Mar 05, 2026