CVE-2025-20244
published 2025-08-14CVE-2025-20244: A vulnerability in the Remote Access SSL VPN service for Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat…
high7.7CVSS 3.1
AVNACLPRLUINSCCNINAH
A vulnerability in the Remote Access SSL VPN service for Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow a remote attacker that is authenticated as a VPN user to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition.
This vulnerability is due to incomplete error checking when parsing an HTTP header field value. An attacker could exploit this vulnerability by sending a crafted HTTP request to a targeted Remote Access SSL VPN service on an affected device. A successful exploit could allow the attacker to cause a DoS condition, which would cause the affected device to reload.
Affected
299 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |
| cisco | cisco_adaptive_security_appliance_software | — | — |