CVE-2026-20064NULL Pointer Dereference in Cisco Secure Firewall Threat Defense Software

CWE-476NULL Pointer DereferenceCWE-250Execution with Unnecessary PrivilegesCWE-88Argument Injection4 documents4 sources
Severity
6.5MEDIUMNVD
EPSS
0.0%
top 91.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Secure Firewall Threat Defense Software
Timeline
PublishedMar 4

Description

A vulnerability in of Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, local attacker to cause the device to unexpectedly reload, causing a denial of service (DoS) condition. This vulnerability is due to improper validation of user-supplied input. An attacker with a low-privileged account could exploit this vulnerability by using crafted commands at the CLI prompt. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS con

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 2.0 | Impact: 4.0

Affected Packages1 packages

🔴Vulnerability Details

2
CVEList
CVE-2026-20064: A vulnerability in of Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, local attacker to cause the device to unexpect2026-03-04
GHSA
GHSA-h526-7r62-gcj9: A vulnerability in of Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, local attacker to cause the device to unexpect2026-03-04

📋Vendor Advisories

1
Cisco
Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Authenticated Command Injection Vulnerabilities2026-03-04
CVE-2026-20064 — NULL Pointer Dereference in Cisco | cvebase