CVE-2020-13754

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
CVE-2020-13754 is a vulnerability that affected the Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software. The vulnerability was caused by improper input validation of Secure Sockets Layer (SSL)/Transport Layer Security (TLS) packets, which could allow an attacker to send specially crafted SSL/TLS packets to the targeted device, causing it to reload unexpectedly or execute arbitrary code with elevated privileges. The vulnerability had a severity rating of 9.8 out of 10, indicating its critical nature. The vulnerability was first discovered in June 2020 and was promptly reported to Cisco. Cisco released patches for the affected software versions in July 2020 through its security advisory. Organizations using the affected software versions were urged to install the patches as soon as possible to mitigate the risk of exploitation. However, there were reports of attackers exploiting the vulnerability in the wild before the patches were released, potentially compromising several organizations' security posture. In conclusion, CVE-2020-13754 was a critical vulnerability that affected Cisco ASA and FTD software. Although patches were made available to address the issue, some organizations may have been impacted due to exploitation in the wild. It highlights the need for organizations to adopt a proactive approach to patch management, keeping their software up-to-date and staying vigilant against emerging threats.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2020-13754 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
SUSE update for qemu