CVE-2026-20062Incorrect Execution-Assigned Permissions in Cisco Secure Firewall Adaptive Security Appliance Software

CWE-279Incorrect Execution-Assigned Permissions4 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.0%
top 99.63%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Secure Firewall Adaptive Security Appliance Software
Timeline
PublishedMar 4

Description

A vulnerability in the CLI of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software in multiple context mode could allow an authenticated, local attacker with administrative privileges in one context to copy files to or from another context, including configuration files. This vulnerability is due to improper access controls for Secure Copy Protocol (SCP) operations when the CiscoSSH stack is enabled. An attacker could exploit this vulnerability by authenticating to a non-admin contex

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:NExploitability: 0.8 | Impact: 5.8

Affected Packages1 packages

🔴Vulnerability Details

2
CVEList
CVE-2026-20062: A vulnerability in the CLI of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software in multiple context mode could allow an authenticated,2026-03-04
GHSA
GHSA-9hgq-rrv7-j79j: A vulnerability in the CLI of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software in multiple context mode could allow an authenticated,2026-03-04

📋Vendor Advisories

1
Cisco
Cisco Secure Firewall Adaptive Security Appliance Software Multiple Context Mode SCP Unauthorized File Access Vulnerability2026-03-04
CVE-2026-20062 — Cisco vulnerability | cvebase