What is the vulnerability ID of this vulnerability?

The vulnerability ID is CVE-2023-20042.

What is the severity level of CVE-2023-20042?

The severity level of CVE-2023-20042 is high.

What is the impact of CVE-2023-20042?

CVE-2023-20042 can cause a denial of service (DoS) condition on an affected device.

Where can I find more information about CVE-2023-20042?

You can find more information about CVE-2023-20042 on the Cisco Security Advisory page: [link](https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ssl-dos-kxG8mpUA)

Vulnerability/
CVE-2023-20042

high

8.6

CWE

404

1/11/2023

2/8/2024

CVE-2023-20042

First published: Wed Nov 01 2023(Updated: )

A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an implementation error within the SSL/TLS session handling process that can prevent the release of a session handler under specific conditions. An attacker could exploit this vulnerability by sending crafted SSL/TLS traffic to an affected device, increasing the probability of session handler leaks. A successful exploit could allow the attacker to eventually deplete the available session handler pool, preventing new sessions from being established and causing a DoS condition.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Firepower Threat Defense	=7.0.0
Cisco Firepower Threat Defense	=7.0.0.1
Cisco Firepower Threat Defense	=7.0.1
Cisco Firepower Threat Defense	=7.0.1.1
Cisco Firepower Threat Defense	=7.0.2
Cisco Firepower Threat Defense	=7.0.2.1
Cisco Firepower Threat Defense	=7.0.3
Cisco Firepower Threat Defense	=7.0.4
Cisco Firepower Threat Defense	=7.0.5
Cisco Firepower Threat Defense	=7.1.0
Cisco Firepower Threat Defense	=7.1.0.1
Cisco Firepower Threat Defense	=7.1.0.2
Cisco Firepower Threat Defense	=7.1.0.3
Cisco Firepower Threat Defense	=7.2.0
Cisco Firepower Threat Defense	=7.2.0.1
Cisco Firepower Threat Defense	=7.2.1
Cisco Firepower Threat Defense	=7.2.2
Cisco Firepower Threat Defense	=7.2.3
Cisco Firepower Threat Defense	=7.3.0
Cisco Firepower Threat Defense	=7.3.1
Cisco Firepower Threat Defense	=7.3.1.1
Cisco Adaptive Security Appliance Software	=9.16.1
Cisco Adaptive Security Appliance Software	=9.16.1.28
Cisco Adaptive Security Appliance Software	=9.16.2
Cisco Adaptive Security Appliance Software	=9.16.2.3
Cisco Adaptive Security Appliance Software	=9.16.2.7
Cisco Adaptive Security Appliance Software	=9.16.2.11
Cisco Adaptive Security Appliance Software	=9.16.2.13
Cisco Adaptive Security Appliance Software	=9.16.2.14
Cisco Adaptive Security Appliance Software	=9.16.3
Cisco Adaptive Security Appliance Software	=9.16.3.3
Cisco Adaptive Security Appliance Software	=9.16.3.14
Cisco Adaptive Security Appliance Software	=9.16.3.15
Cisco Adaptive Security Appliance Software	=9.16.3.19
Cisco Adaptive Security Appliance Software	=9.16.3.23
Cisco Adaptive Security Appliance Software	=9.16.4
Cisco Adaptive Security Appliance Software	=9.16.4.9
Cisco Adaptive Security Appliance Software	=9.17.1
Cisco Adaptive Security Appliance Software	=9.17.1.7
Cisco Adaptive Security Appliance Software	=9.17.1.9
Cisco Adaptive Security Appliance Software	=9.17.1.10
Cisco Adaptive Security Appliance Software	=9.17.1.11
Cisco Adaptive Security Appliance Software	=9.17.1.13
Cisco Adaptive Security Appliance Software	=9.17.1.15
Cisco Adaptive Security Appliance Software	=9.17.1.20
Cisco Adaptive Security Appliance Software	=9.18.1
Cisco Adaptive Security Appliance Software	=9.18.1.3
Cisco Adaptive Security Appliance Software	=9.18.2
Cisco Adaptive Security Appliance Software	=9.18.2.5
Cisco Adaptive Security Appliance Software	=9.18.2.7
Cisco Adaptive Security Appliance Software	=9.19.1

Never miss a vulnerability like this again

Reference Links

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ssl-dos-kxG8mpUA

Frequently Asked Questions

What is the vulnerability ID of this vulnerability?
The vulnerability ID is CVE-2023-20042.
What is the severity level of CVE-2023-20042?
The severity level of CVE-2023-20042 is high.
Which software is affected by CVE-2023-20042?
Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software are affected by CVE-2023-20042.
What is the impact of CVE-2023-20042?
CVE-2023-20042 can cause a denial of service (DoS) condition on an affected device.
Where can I find more information about CVE-2023-20042?
You can find more information about CVE-2023-20042 on the Cisco Security Advisory page: [link](https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ssl-dos-kxG8mpUA)

agent/type
agent/first-publish-date
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/references
agent/author
agent/severity
agent/last-modified-date
agent/weakness
agent/description
agent/event
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
vendor/cisco
canonical/cisco firepower threat defense
version/cisco firepower threat defense/7.0.0
version/cisco firepower threat defense/7.0.0.1
version/cisco firepower threat defense/7.0.1
version/cisco firepower threat defense/7.0.1.1
version/cisco firepower threat defense/7.0.2
version/cisco firepower threat defense/7.0.2.1
version/cisco firepower threat defense/7.0.3
version/cisco firepower threat defense/7.0.4
version/cisco firepower threat defense/7.0.5
version/cisco firepower threat defense/7.1.0
version/cisco firepower threat defense/7.1.0.1
version/cisco firepower threat defense/7.1.0.2
version/cisco firepower threat defense/7.1.0.3
version/cisco firepower threat defense/7.2.0
version/cisco firepower threat defense/7.2.0.1
version/cisco firepower threat defense/7.2.1
version/cisco firepower threat defense/7.2.2
version/cisco firepower threat defense/7.2.3
version/cisco firepower threat defense/7.3.0
version/cisco firepower threat defense/7.3.1
version/cisco firepower threat defense/7.3.1.1
canonical/cisco adaptive security appliance software
version/cisco adaptive security appliance software/9.16.1
version/cisco adaptive security appliance software/9.16.1.28
version/cisco adaptive security appliance software/9.16.2
version/cisco adaptive security appliance software/9.16.2.3
version/cisco adaptive security appliance software/9.16.2.7
version/cisco adaptive security appliance software/9.16.2.11
version/cisco adaptive security appliance software/9.16.2.13
version/cisco adaptive security appliance software/9.16.2.14
version/cisco adaptive security appliance software/9.16.3
version/cisco adaptive security appliance software/9.16.3.3
version/cisco adaptive security appliance software/9.16.3.14
version/cisco adaptive security appliance software/9.16.3.15
version/cisco adaptive security appliance software/9.16.3.19
version/cisco adaptive security appliance software/9.16.3.23
version/cisco adaptive security appliance software/9.16.4
version/cisco adaptive security appliance software/9.16.4.9
version/cisco adaptive security appliance software/9.17.1
version/cisco adaptive security appliance software/9.17.1.7
version/cisco adaptive security appliance software/9.17.1.9
version/cisco adaptive security appliance software/9.17.1.10
version/cisco adaptive security appliance software/9.17.1.11
version/cisco adaptive security appliance software/9.17.1.13
version/cisco adaptive security appliance software/9.17.1.15
version/cisco adaptive security appliance software/9.17.1.20
version/cisco adaptive security appliance software/9.18.1
version/cisco adaptive security appliance software/9.18.1.3
version/cisco adaptive security appliance software/9.18.2
version/cisco adaptive security appliance software/9.18.2.5
version/cisco adaptive security appliance software/9.18.2.7
version/cisco adaptive security appliance software/9.19.1

CVE-2023-20042

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID of this vulnerability?

What is the severity level of CVE-2023-20042?

Which software is affected by CVE-2023-20042?

What is the impact of CVE-2023-20042?

Where can I find more information about CVE-2023-20042?

Company

Resources

Contact