New Cisco Firepower Threat Defense Vulnerability Discovered

New Vulnerability Threatens Cisco Adaptive Security Appliance (ASA)

Considered by NIST to have a High base score for Threat Severity, the vulnerability, CVE-2024-20353, affects systems developed and maintained by Cisco Systems Incorporated. It has so far been found to affect VPN web servers and management for what is known as Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD).

What is Cisco Adaptive Security Appliance (ASA)

The operating system for Cisco’s line of security devices is in the Cisco ASA Family. These technologies are designed and tailored for corporate networks and data centers. It is used in products like dedicated firewalls and provides effective capabilities such as IPS, VPNs, and Cisco TrustSec security group tags.

What is Cisco Firepower Threat Defense (FTD)

The software enables the flagging of specific network traffic patterns and better network control. Cisco FTD policies detect and recognize traffic and are typically used to make networks more efficient and less wasteful of resources.

How the Vulnerability Works.

According to NIST’s National Vulnerability Database (NVD) an attacker intent on causing a Denial of Service (DoS) condition can use this vulnerability to cause an afflicted device to reload unexpectedly to cause said condition. This attacker does not need authentication and can act remotely–that is, without requiring physical access to the device.

Learn More

You can learn more about Vulnerabilities from a reputable source at NIST’s National Vulnerability Database (NVD), a registry of all the various kinds of security vulnerabilities as yet discovered where one can find each categorized, ranked, and explained in detail.

Another source where one may find information about security threats, attacks, or best practices is OWASP’s website where one may learn extensively about the various kinds of security threat and even get involved with their activities and participate in learning.

Sources:

https://nvd.nist.gov/vuln/detail/CVE-2024-20353?ref=thestack.technology
https://www.cisco.com/c/en/us/products/security/adaptive-security-appliance-asa-software/index.html#~features
https://www.cisco.com/c/en/us/td/docs/security/firepower/710/fdm/fptd-fdm-config-guide-710/fptd-fdm-get-started.html

Learn More About MGHS

Share your love

Related Posts

3 Comments

Leave a Reply

Your email address will not be published. Required fields are marked *


Fatal error: Uncaught wfWAFStorageFileException: Unable to verify temporary file contents for atomic writing. in /home/u769886334/domains/themghs.com/public_html/wp-content/plugins/wordfence/vendor/wordfence/wf-waf/src/lib/storage/file.php:51 Stack trace: #0 /home/u769886334/domains/themghs.com/public_html/wp-content/plugins/wordfence/vendor/wordfence/wf-waf/src/lib/storage/file.php(658): wfWAFStorageFile::atomicFilePutContents() #1 [internal function]: wfWAFStorageFile->saveConfig() #2 {main} thrown in /home/u769886334/domains/themghs.com/public_html/wp-content/plugins/wordfence/vendor/wordfence/wf-waf/src/lib/storage/file.php on line 51