CVE-2023-20006Incorrect Conversion between Numeric Types in Cisco Adaptive Security Appliance Software

CWE-681Incorrect Conversion between Numeric Types4 documents4 sources
Severity
7.5HIGHNVD
CNA8.6
EPSS
0.6%
top 31.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Cisco Adaptive Security Appliance SoftwareCisco Firepower Threat Defense SoftwareCisco Adaptive Security Appliance Software+1 more
Timeline
PublishedJun 28

Description

A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Appliances could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to an implementation error within the cryptographic functions for SSL/TLS traffic processing when they are

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

NVDcisco/adaptive_security_appliance_software9.16.4, 9.18.2, 9.18.2.5+2
CVEListV5cisco/cisco_firepower_threat_defense_software7.2.1, 7.2.2, 7.2.3+2
CVEListV5cisco/cisco_adaptive_security_appliance_software9.16.4, 9.18.2, 9.18.2.5+2
NVDcisco/firepower_threat_defense7.2.1, 7.2.2, 7.2.3+2

🔴Vulnerability Details

2
CVEList
CVE-2023-20006: A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threa2023-06-28
GHSA
GHSA-hvf9-xw27-729c: A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threa2023-06-28

📋Vendor Advisories

1
Cisco
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software for Firepower 2100 Series Appliances SSL/TLS Denial of Service Vulnerability2023-06-07
CVE-2023-20006 — Cisco vulnerability | cvebase