Cisco Firepower Threat Defense — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Firepower Threat Defense, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2018-0101 — CVSS 10.0 (critical): A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could allow an…
CVE-2024-20412 — CVSS 9.3 (critical): A vulnerability in Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 1000, 2100, 3100, and 4200 Series could allow an…
CVE-2020-3187 — CVSS 9.1 (critical): A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2025-20363 — CVSS 9.0 (critical): A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software, Cisco Secure Firewall Threat…
CVE-2022-20759 — CVSS 8.8 (high): A vulnerability in the web services interface for remote access VPN features of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2019-12675 — CVSS 8.8 (high): Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local…
CVE-2019-1669 — CVSS 8.6 (high): A vulnerability in the data acquisition (DAQ) component of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated…
CVE-2022-20751 — CVSS 8.6 (high): A vulnerability in the Snort detection engine integration for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated…
CVE-2022-20757 — CVSS 8.6 (high): A vulnerability in the connection handling function in Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote…
CVE-2022-20760 — CVSS 8.6 (high): A vulnerability in the DNS inspection handler of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD)…
CVE-2022-20767 — CVSS 8.6 (high): A vulnerability in the Snort rule evaluation function of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated…
CVE-2022-20947 — CVSS 8.6 (high): A vulnerability in dynamic access policies (DAP) functionality of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat…
CVE-2022-20946 — CVSS 8.6 (high): A vulnerability in the generic routing encapsulation (GRE) tunnel decapsulation feature of Cisco Firepower Threat Defense (FTD) Software…
CVE-2018-15388 — CVSS 8.6 (high): A vulnerability in the WebVPN login process of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2018-15454 — CVSS 8.6 (high): A vulnerability in the Session Initiation Protocol (SIP) inspection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2018-15462 — CVSS 8.6 (high): A vulnerability in the TCP ingress handler for the data interfaces that are configured with management access to Cisco Firepower Threat…
CVE-2019-15256 — CVSS 8.6 (high): A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2019-1694 — CVSS 8.6 (high): A vulnerability in the TCP processing engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2019-1703 — CVSS 8.6 (high): A vulnerability in the internal packet-processing functionality of Cisco Firepower Threat Defense (FTD) Software for the Cisco Firepower…
CVE-2019-1708 — CVSS 8.6 (high): A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE) feature for the Cisco Adaptive Security…
CVE-2019-1714 — CVSS 8.6 (high): A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 Single Sign-On (SSO) for Clientless SSL VPN (WebVPN)…
CVE-2025-20182 — CVSS 8.6 (high): A vulnerability in the Internet Key Exchange version 2 (IKEv2) protocol processing of Cisco Adaptive Security Appliance (ASA) Software…
CVE-2024-20495 — CVSS 8.6 (high): A vulnerability in the Remote Access VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense…
CVE-2024-20494 — CVSS 8.6 (high): A vulnerability in the TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat…
CVE-2020-3189 — CVSS 8.6 (high): A vulnerability in the VPN System Logging functionality for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated…
CVE-2020-3191 — CVSS 8.6 (high): A vulnerability in DNS over IPv6 packet processing for Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD)…
CVE-2020-3196 — CVSS 8.6 (high): A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) handler of Cisco Adaptive Security Appliance (ASA)…
CVE-2020-3283 — CVSS 8.6 (high): A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) handler of Cisco Firepower Threat Defense (FTD) Software…
CVE-2018-0228 — CVSS 8.6 (high): A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated…
CVE-2018-0230 — CVSS 8.6 (high): A vulnerability in the internal packet-processing functionality of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100…
CVE-2020-3304 — CVSS 8.6 (high): A vulnerability in the web interface of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could…
CVE-2024-20402 — CVSS 8.6 (high): A vulnerability in the SSL VPN feature for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2020-3373 — CVSS 8.6 (high): A vulnerability in the IP fragment-handling implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat…
CVE-2020-3436 — CVSS 8.6 (high): A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) Software…
CVE-2020-3528 — CVSS 8.6 (high): A vulnerability in the OSPF Version 2 (OSPFv2) implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower…
CVE-2020-3529 — CVSS 8.6 (high): A vulnerability in the SSL VPN negotiation process for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense…
CVE-2020-3533 — CVSS 8.6 (high): A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco Firepower Threat Defense (FTD) Software…
CVE-2020-3562 — CVSS 8.6 (high): A vulnerability in the SSL/TLS inspection of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series firewalls could…
CVE-2020-3563 — CVSS 8.6 (high): A vulnerability in the packet processing functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated…
CVE-2018-0231 — CVSS 8.6 (high): A vulnerability in the Transport Layer Security (TLS) library of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower…
CVE-2020-3571 — CVSS 8.6 (high): A vulnerability in the ICMP ingress packet processing of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 4110 appliances…
CVE-2020-3572 — CVSS 8.6 (high): A vulnerability in the SSL/TLS session handler of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2024-20330 — CVSS 8.6 (high): A vulnerability in the Snort 2 and Snort 3 TCP and UDP detection engine of Cisco Firepower Threat Defense (FTD) Software for Cisco…
CVE-2018-0240 — CVSS 8.6 (high): Multiple vulnerabilities in the Application Layer Protocol Inspection feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2021-1402 — CVSS 8.6 (high): A vulnerability in the software-based SSL/TLS message handler of Cisco Firepower Threat Defense (FTD) Software could allow an…
CVE-2021-1445 — CVSS 8.6 (high): Multiple vulnerabilities in Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an…
CVE-2021-1501 — CVSS 8.6 (high): A vulnerability in the SIP inspection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2021-1504 — CVSS 8.6 (high): Multiple vulnerabilities in Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an…
CVE-2021-1573 — CVSS 8.6 (high): A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2021-34704 — CVSS 8.6 (high): A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2023-20244 — CVSS 8.6 (high): A vulnerability in the internal packet processing of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series…
CVE-2021-34781 — CVSS 8.6 (high): A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco Firepower Threat Defense (FTD) Software could…
CVE-2021-34783 — CVSS 8.6 (high): A vulnerability in the software-based SSL/TLS message handler of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat…
CVE-2023-20095 — CVSS 8.6 (high): A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense…
CVE-2023-20086 — CVSS 8.6 (high): A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software…
CVE-2021-34792 — CVSS 8.6 (high): A vulnerability in the memory management of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software…
CVE-2021-34793 — CVSS 8.6 (high): A vulnerability in the TCP Normalizer of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software…
CVE-2023-20083 — CVSS 8.6 (high): A vulnerability in ICMPv6 inspection when configured with the Snort 2 detection engine for Cisco Firepower Threat Defense (FTD) Software…
CVE-2021-40116 — CVSS 8.6 (high): Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a…
CVE-2021-40117 — CVSS 8.6 (high): A vulnerability in SSL/TLS message handler for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2021-40118 — CVSS 8.6 (high): A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2022-20715 — CVSS 8.6 (high): A vulnerability in the remote access SSL VPN features of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat…
CVE-2023-20006 — CVSS 8.6 (high): A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2022-20745 — CVSS 8.6 (high): A vulnerability in the web services interface for remote access VPN features of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2022-20746 — CVSS 8.6 (high): A vulnerability in the TCP proxy functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote…
CVE-2021-1493 — CVSS 8.5 (high): A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2023-20063 — CVSS 8.2 (high): A vulnerability in the inter-device communication mechanisms between devices that are running Cisco Firepower Threat Defense (FTD) Software…
CVE-2019-12674 — CVSS 8.2 (high): Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local…
CVE-2020-3514 — CVSS 8.2 (high): A vulnerability in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker…
CVE-2018-0453 — CVSS 8.2 (high): A vulnerability in the Sourcefire tunnel control channel protocol in Cisco Firepower System Software running on Cisco Firepower Threat…
CVE-2020-3550 — CVSS 8.1 (high): A vulnerability in the sfmgr daemon of Cisco Firepower Management Center (FMC) Software and Cisco Firepower Threat Defense (FTD) Software…
CVE-2021-34762 — CVSS 8.1 (high): A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated…
CVE-2020-3549 — CVSS 8.1 (high): A vulnerability in the sftunnel functionality of Cisco Firepower Management Center (FMC) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2019-12699 — CVSS 7.8 (high): Multiple vulnerabilities in the CLI of Cisco FXOS Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated…
CVE-2020-3167 — CVSS 7.8 (high): A vulnerability in the CLI of Cisco FXOS Software and Cisco UCS Manager Software could allow an authenticated, local attacker to execute…
CVE-2021-1448 — CVSS 7.8 (high): A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute…
CVE-2024-20268 — CVSS 7.7 (high): A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2022-20924 — CVSS 7.7 (high): A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2024-20408 — CVSS 7.7 (high): A vulnerability in the Dynamic Access Policies (DAP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat…
CVE-2026-20100 — CVSS 7.7 (high): A vulnerability in the LUA interperter of the Remote Access SSL VPN feature of Cisco Secure Firewall Adaptive Security Appliance (ASA)…
CVE-2025-20127 — CVSS 7.7 (high): A vulnerability in the TLS 1.3 implementation for a specific cipher for Cisco Secure Firewall Adaptive Security Appliance (ASA) Software…
CVE-2022-20927 — CVSS 7.7 (high): A vulnerability in the SSL/TLS client of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software…
CVE-2021-1422 — CVSS 7.7 (high): A vulnerability in the software cryptography module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense…
CVE-2020-3306 — CVSS 7.5 (high): A vulnerability in the DHCP module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software…
CVE-2020-3254 — CVSS 7.5 (high): Multiple vulnerabilities in the Media Gateway Control Protocol (MGCP) inspection feature of Cisco Adaptive Security Appliance (ASA)…
CVE-2020-3255 — CVSS 7.5 (high): A vulnerability in the packet processing functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated…
CVE-2023-20107 — CVSS 7.5 (high): A vulnerability in the deterministic random bit generator (DRBG), also known as pseudorandom number generator (PRNG), in Cisco Adaptive…
CVE-2020-3298 — CVSS 7.5 (high): A vulnerability in the Open Shortest Path First (OSPF) implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2020-3303 — CVSS 7.5 (high): A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2020-3305 — CVSS 7.5 (high): A vulnerability in the implementation of the Border Gateway Protocol (BGP) module in Cisco Adaptive Security Appliance (ASA) Software and…
CVE-2020-3317 — CVSS 7.5 (high): A vulnerability in the ssl_inspection component of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote…
CVE-2020-3554 — CVSS 7.5 (high): A vulnerability in the TCP packet processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2018-15383 — CVSS 7.5 (high): A vulnerability in the cryptographic hardware accelerator driver of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower…
CVE-2019-12627 — CVSS 7.5 (high): A vulnerability in the application policy configuration of the Cisco Firepower Threat Defense (FTD) Software could allow an…
CVE-2019-12673 — CVSS 7.5 (high): A vulnerability in the FTP inspection engine of Cisco Adaptive Security (ASA) Software and Cisco Firepower Threat Defense (FTD) Software…
CVE-2019-12678 — CVSS 7.5 (high): A vulnerability in the Session Initiation Protocol (SIP) inspection module of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2019-12698 — CVSS 7.5 (high): A vulnerability in the WebVPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software…
CVE-2019-1687 — CVSS 7.5 (high): A vulnerability in the TCP proxy functionality for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense…
CVE-2017-6632 — CVSS 7.5 (high): A vulnerability in the logging configuration of Secure Sockets Layer (SSL) policies for Cisco FirePOWER System Software 5.3.0 through 6.2.2…
CVE-2019-1696 — CVSS 7.5 (high): Multiple vulnerabilities in the Server Message Block (SMB) Protocol preprocessor detection engine for Cisco Firepower Threat Defense (FTD)…
CVE-2019-1704 — CVSS 7.5 (high): Multiple vulnerabilities in the Server Message Block (SMB) Protocol preprocessor detection engine for Cisco Firepower Threat Defense (FTD)…
CVE-2022-20685 — CVSS 7.5 (high): A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an unauthenticated, remote attacker to cause a denial…
CVE-2021-1223 — CVSS 7.5 (high): Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker…
CVE-2018-0227 — CVSS 7.5 (high): A vulnerability in the Secure Sockets Layer (SSL) Virtual Private Network (VPN) Client Certificate Authentication feature for Cisco…
CVE-2020-3179 — CVSS 7.5 (high): A vulnerability in the generic routing encapsulation (GRE) tunnel decapsulation feature of Cisco Firepower Threat Defense (FTD) Software…
CVE-2022-20854 — CVSS 7.5 (high): A vulnerability in the processing of SSH connections of Cisco Firepower Management Center (FMC) and Cisco Firepower Threat Defense (FTD)…
CVE-2020-3195 — CVSS 7.5 (high): A vulnerability in the Open Shortest Path First (OSPF) implementation in Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2020-3577 — CVSS 7.4 (high): A vulnerability in the ingress packet processing path of Cisco Firepower Threat Defense (FTD) Software for interfaces that are configured…
CVE-2019-12676 — CVSS 7.4 (high): A vulnerability in the Open Shortest Path First (OSPF) implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2020-3334 — CVSS 7.4 (high): A vulnerability in the ARP packet processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2022-20742 — CVSS 7.4 (high): A vulnerability in an IPsec VPN library of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2022-20866 — CVSS 7.4 (high): A vulnerability in the handling of RSA keys on devices running Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat…
CVE-2019-15992 — CVSS 7.2 (high): A vulnerability in the implementation of the Lua interpreter integrated in Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2017-6625 — CVSS 7.1 (high): A "Cisco Firepower Threat Defense 6.0.0 through 6.2.2 and Cisco ASA with FirePOWER Module Denial of Service" vulnerability in the access…
CVE-2026-20020 — CVSS 6.8 (medium): A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenticated…
CVE-2020-3555 — CVSS 6.8 (medium): A vulnerability in the SIP inspection process of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2018-15399 — CVSS 6.8 (medium): A vulnerability in the TCP syslog module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2023-20042 — CVSS 6.8 (medium): A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense…
CVE-2018-15390 — CVSS 6.8 (medium): A vulnerability in the FTP inspection engine of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote…
CVE-2023-20081 — CVSS 6.8 (medium): A vulnerability in the IPv6 DHCP (DHCPv6) client module of Cisco Adaptive Security Appliance (ASA) Software, Cisco Firepower Threat Defense…
CVE-2019-1697 — CVSS 6.8 (medium): A vulnerability in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco Adaptive Security Appliance…
CVE-2021-40114 — CVSS 6.8 (medium): Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an…
CVE-2020-3166 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to read or write arbitrary files on the…
CVE-2020-3457 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to inject arbitrary commands that are…
CVE-2021-34756 — CVSS 6.7 (medium): Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to…
CVE-2021-34755 — CVSS 6.7 (medium): Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to…
CVE-2021-1476 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could…
CVE-2021-1488 — CVSS 6.7 (medium): A vulnerability in the upgrade process of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2019-12694 — CVSS 6.7 (medium): A vulnerability in the command line interface (CLI) of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local…
CVE-2020-3458 — CVSS 6.7 (medium): Multiple vulnerabilities in the secure boot process of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD)…
CVE-2020-3253 — CVSS 6.7 (medium): A vulnerability in the support tunnel feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker…
CVE-2019-12700 — CVSS 6.5 (medium): A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software…
CVE-2022-20949 — CVSS 6.5 (medium): A vulnerability in the management web server of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker…
CVE-2019-1693 — CVSS 6.5 (medium): A vulnerability in the WebVPN service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software…
CVE-2019-1695 — CVSS 6.5 (medium): A vulnerability in the detection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2022-20826 — CVSS 6.4 (medium): A vulnerability in the secure boot implementation of Cisco Secure Firewalls 3100 Series that are running Cisco Adaptive Security Appliance…
CVE-2024-20382 — CVSS 6.1 (medium): A vulnerability in the VPN web client services feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat…
CVE-2023-20264 — CVSS 6.1 (medium): A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 single sign-on (SSO) for remote access VPN in Cisco…
CVE-2020-3582 — CVSS 6.1 (medium): Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat…
CVE-2020-3581 — CVSS 6.1 (medium): Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat…
CVE-2019-12695 — CVSS 6.1 (medium): A vulnerability in the Clientless SSL VPN (WebVPN) portal of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense…
CVE-2026-20070 — CVSS 6.1 (medium): A vulnerability in the VPN web services component of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure…
CVE-2020-3583 — CVSS 6.1 (medium): Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat…
CVE-2022-20934 — CVSS 6.0 (medium): A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software and Cisco FXOS Software could allow an authenticated, local…
CVE-2019-1709 — CVSS 6.0 (medium): A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to perform a…
CVE-2021-1256 — CVSS 6.0 (medium): A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to overwrite files…
CVE-2017-3887 — CVSS 5.9 (medium): A vulnerability in the detection engine that handles Secure Sockets Layer (SSL) packets for Cisco Firepower System Software could allow an…
CVE-2024-20261 — CVSS 5.8 (medium): A vulnerability in the file policy feature that is used to inspect encrypted archive files of Cisco Firepower Threat Defense (FTD) Software…
CVE-2018-0243 — CVSS 5.8 (medium): A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a…
CVE-2018-0244 — CVSS 5.8 (medium): A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a…
CVE-2018-0297 — CVSS 5.8 (medium): A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an unauthenticated, remote attacker to…
CVE-2019-1691 — CVSS 5.8 (medium): A vulnerability in the detection engine of Cisco Firepower Threat Defense Software could allow an unauthenticated, remote attacker to cause…
CVE-2019-1970 — CVSS 5.8 (medium): A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocol inspection engine of Cisco Firepower Threat…
CVE-2019-1978 — CVSS 5.8 (medium): A vulnerability in the stream reassembly component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA…
CVE-2019-1981 — CVSS 5.8 (medium): A vulnerability in the normalization functionality of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA…
CVE-2020-3285 — CVSS 5.8 (medium): A vulnerability in the Transport Layer Security version 1.3 (TLS 1.3) policy with URL category functionality for Cisco Firepower Threat…
CVE-2020-3299 — CVSS 5.8 (medium): Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker…
CVE-2020-3565 — CVSS 5.8 (medium): A vulnerability in the TCP Intercept functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote…
CVE-2021-1224 — CVSS 5.8 (medium): Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine…
CVE-2021-1495 — CVSS 5.8 (medium): Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker…
CVE-2021-34754 — CVSS 5.8 (medium): Multiple vulnerabilities in the payload inspection for Ethernet Industrial Protocol (ENIP) traffic for Cisco Firepower Threat Defense (FTD)…
CVE-2022-20795 — CVSS 5.8 (medium): A vulnerability in the implementation of the Datagram TLS (DTLS) protocol in Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2022-20922 — CVSS 5.8 (medium): Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products…
CVE-2022-20928 — CVSS 5.8 (medium): A vulnerability in the authentication and authorization flows for VPN connections in Cisco Adaptive Security Appliance (ASA) Software and…
CVE-2022-20943 — CVSS 5.8 (medium): Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products…
CVE-2022-20950 — CVSS 5.8 (medium): A vulnerability in the interaction of SIP and Snort 3 for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated…
CVE-2023-20071 — CVSS 5.8 (medium): Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker…
CVE-2023-20245 — CVSS 5.8 (medium): Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat…
CVE-2023-20246 — CVSS 5.8 (medium): Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remote…
CVE-2023-20270 — CVSS 5.8 (medium): A vulnerability in the interaction between the Server Message Block (SMB) protocol preprocessor and the Snort 3 detection engine for Cisco…
CVE-2024-20293 — CVSS 5.8 (medium): A vulnerability in the activation of an access control list (ACL) on Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower…
CVE-2024-20297 — CVSS 5.8 (medium): A vulnerability in the AnyConnect firewall for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2024-20299 — CVSS 5.8 (medium): A vulnerability in the AnyConnect firewall for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2024-20363 — CVSS 5.8 (medium): Multiple Cisco products are affected by a vulnerability in the Snort Intrusion Prevention System (IPS) rule engine that could allow an…
CVE-2024-20384 — CVSS 5.8 (medium): A vulnerability in the Network Service Group (NSG) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat…
CVE-2024-20407 — CVSS 5.8 (medium): A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense…
CVE-2024-20431 — CVSS 5.8 (medium): A vulnerability in the geolocation access control feature of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated…
CVE-2026-20073 — CVSS 5.8 (medium): A vulnerability in Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software…
CVE-2020-3352 — CVSS 5.5 (medium): A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to access hidden…
CVE-2021-34787 — CVSS 5.3 (medium): A vulnerability in the identity-based firewall (IDFW) rule processing feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2020-3188 — CVSS 5.3 (medium): A vulnerability in how Cisco Firepower Threat Defense (FTD) Software handles session timeouts for management connections could allow an…
CVE-2020-3186 — CVSS 5.3 (medium): A vulnerability in the management access list configuration of Cisco Firepower Threat Defense (FTD) Software could allow an…
CVE-2019-1982 — CVSS 5.3 (medium): A vulnerability in the HTTP traffic filtering component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for…
CVE-2017-3806 — CVSS 5.3 (medium): A vulnerability in CLI command processing in the Cisco Firepower 4100 Series Next-Generation Firewall and Cisco Firepower 9300 Security…
CVE-2021-1236 — CVSS 5.3 (medium): Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated…
CVE-2019-1980 — CVSS 5.3 (medium): A vulnerability in the protocol detection component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA…
CVE-2019-1715 — CVSS 5.3 (medium): A vulnerability in the Deterministic Random Bit Generator (DRBG), also known as Pseudorandom Number Generator (PRNG), used in Cisco…
CVE-2020-3585 — CVSS 5.3 (medium): A vulnerability in the TLS handler of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software…
CVE-2020-3578 — CVSS 5.3 (medium): A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…
CVE-2020-3564 — CVSS 5.3 (medium): A vulnerability in the FTP inspection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)…