CVE-2023-20264 — Open Redirect in Cisco Adaptive Security Appliance Software

CWE-601 — Open Redirect CWE-667 — Improper Locking5 documents5 sources

Severity

6.1MEDIUMNVD

EPSS

0.1%

top 78.70%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Adaptive Security Appliance Software Cisco Adaptive Security Appliance Software Cisco Firepower Threat Defense Software +1 more

Timeline

PublishedNov 1

Description

A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 single sign-on (SSO) for remote access VPN in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to intercept the SAML assertion of a user who is authenticating to a remote access VPN session. This vulnerability is due to insufficient validation of the login URL. An attacker could exploit this vulnerability by persu…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages4 packages

▶NVDcisco/adaptive_security_appliance_software9.18.1 — 9.18.3.46+1

▶CVEListV5cisco/cisco_adaptive_security_appliance_software12 versions+11

▶CVEListV5cisco/cisco_firepower_threat_defense_software7.2.4

▶NVDcisco/firepower_threat_defense7.2.4

🔴Vulnerability Details

CVEList

CVE-2023-20264: A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2↗2023-11-01

▶

GHSA

GHSA-3gjh-276x-542v: A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2↗2023-11-01

▶

📋Vendor Advisories

Cisco

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software SAML Assertion Hijack Vulnerability↗2023-11-01

▶