Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.6
Cisco Firewall Devices Can Crash from Malicious Packets
CVE-2026-20103
Summary
A flaw in Cisco firewall devices can cause them to crash when receiving malicious packets, making it impossible to set up new VPN connections. This does not affect the main control panel, but may temporarily freeze the device. To protect yourself, make sure to apply the latest security patches to your Cisco firewalls.
Original title
A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Threat Defense (FTD) Software could allow an unaut...
Original description
A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to exhaust device memory resulting in a denial of service (DoS) condition to new Remote Access SSL VPN connections. This does not affect the management interface, though it may become temporarily unresponsive.
This vulnerability is due to trusting user input without validation. An attacker could exploit this vulnerability by sending crafted packets to the Remote Access SSL VPN server. A successful exploit could allow the attacker to cause the device web interface to stop responding, resulting in a DoS condition.
This vulnerability is due to trusting user input without validation. An attacker could exploit this vulnerability by sending crafted packets to the Remote Access SSL VPN server. A successful exploit could allow the attacker to cause the device web interface to stop responding, resulting in a DoS condition.
nvd CVSS3.1
8.6
Vulnerability type
CWE-770
Allocation of Resources Without Limits
Published: 4 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026