What is the severity of CVE-2023-20095?

The severity of CVE-2023-20095 is critical, as it allows unauthenticated remote attackers to cause a denial of service condition.

How do I fix CVE-2023-20095?

To fix CVE-2023-20095, upgrade to a version of Cisco Adaptive Security Appliance or Firepower Threat Defense software that is not affected.

Which Cisco products are affected by CVE-2023-20095?

The vulnerable products include specific versions of Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software.

What potential impact does CVE-2023-20095 have on my network?

CVE-2023-20095 can lead to a denial of service, disrupting remote access VPN services for users.

Is there a workaround for CVE-2023-20095?

Currently, there are no documented workarounds for CVE-2023-20095; updating the software is the recommended action.

Vulnerability/
CVE-2023-20095

high

8.6

CWE

772

1/11/2023

2/8/2024

CVE-2023-20095

First published: Wed Nov 01 2023(Updated: )

A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of HTTPS requests. An attacker could exploit this vulnerability by sending crafted HTTPS requests to an affected system. A successful exploit could allow the attacker to cause resource exhaustion, resulting in a DoS condition.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Adaptive Security Appliance	=9.8.1
Cisco Adaptive Security Appliance	=9.8.1.5
Cisco Adaptive Security Appliance	=9.8.1.7
Cisco Adaptive Security Appliance	=9.8.2
Cisco Adaptive Security Appliance	=9.8.2.8
Cisco Adaptive Security Appliance	=9.8.2.14
Cisco Adaptive Security Appliance	=9.8.2.15
Cisco Adaptive Security Appliance	=9.8.2.17
Cisco Adaptive Security Appliance Software	=9.8.2.20
Cisco Adaptive Security Appliance Software	=9.8.2.24
Cisco Adaptive Security Appliance Software	=9.8.2.26
Cisco Adaptive Security Appliance Software	=9.8.2.28
Cisco Adaptive Security Appliance Software	=9.8.2.33
Cisco Adaptive Security Appliance Software	=9.8.2.35
Cisco Adaptive Security Appliance Software	=9.8.2.38
Cisco Adaptive Security Appliance Software	=9.8.3
Cisco Adaptive Security Appliance Software	=9.8.3.8
Cisco Adaptive Security Appliance Software	=9.8.3.11
Cisco Adaptive Security Appliance Software	=9.8.3.14
Cisco Adaptive Security Appliance Software	=9.8.3.16
Cisco Adaptive Security Appliance Software	=9.8.3.18
Cisco Adaptive Security Appliance Software	=9.8.3.21
Cisco Adaptive Security Appliance Software	=9.8.3.26
Cisco Adaptive Security Appliance Software	=9.8.3.29
Cisco Adaptive Security Appliance Software	=9.8.4
Cisco Adaptive Security Appliance Software	=9.8.4.3
Cisco Adaptive Security Appliance Software	=9.8.4.7
Cisco Adaptive Security Appliance Software	=9.8.4.8
Cisco Adaptive Security Appliance Software	=9.8.4.10
Cisco Adaptive Security Appliance Software	=9.8.4.12
Cisco Adaptive Security Appliance Software	=9.8.4.15
Cisco Adaptive Security Appliance Software	=9.8.4.17
Cisco Adaptive Security Appliance Software	=9.8.4.20
Cisco Adaptive Security Appliance Software	=9.8.4.22
Cisco Adaptive Security Appliance Software	=9.8.4.25
Cisco Adaptive Security Appliance Software	=9.8.4.26
Cisco Adaptive Security Appliance Software	=9.8.4.29
Cisco Adaptive Security Appliance Software	=9.8.4.32
Cisco Adaptive Security Appliance Software	=9.8.4.33
Cisco Adaptive Security Appliance Software	=9.8.4.34
Cisco Adaptive Security Appliance Software	=9.8.4.35
Cisco Adaptive Security Appliance Software	=9.8.4.39
Cisco Adaptive Security Appliance Software	=9.8.4.40
Cisco Adaptive Security Appliance Software	=9.8.4.41
Cisco Adaptive Security Appliance Software	=9.8.4.43
Cisco Adaptive Security Appliance Software	=9.8.4.44
Cisco Adaptive Security Appliance Software	=9.8.4.45
Cisco Adaptive Security Appliance Software	=9.12.1
Cisco Adaptive Security Appliance Software	=9.12.1.2
Cisco Adaptive Security Appliance Software	=9.12.1.3
Cisco Adaptive Security Appliance Software	=9.12.2
Cisco Adaptive Security Appliance Software	=9.12.2.1
Cisco Adaptive Security Appliance Software	=9.12.2.4
Cisco Adaptive Security Appliance Software	=9.12.2.5
Cisco Adaptive Security Appliance Software	=9.12.2.9
Cisco Adaptive Security Appliance Software	=9.12.3
Cisco Adaptive Security Appliance Software	=9.12.3.2
Cisco Adaptive Security Appliance Software	=9.12.3.7
Cisco Adaptive Security Appliance Software	=9.12.3.9
Cisco Adaptive Security Appliance Software	=9.12.4
Cisco Adaptive Security Appliance Software	=9.12.4.4
Cisco Adaptive Security Appliance Software	=9.12.4.7
Cisco Adaptive Security Appliance Software	=9.12.4.8
Cisco Adaptive Security Appliance Software	=9.12.4.10
Cisco Adaptive Security Appliance Software	=9.12.4.13
Cisco Adaptive Security Appliance Software	=9.12.4.18
Cisco Adaptive Security Appliance Software	=9.12.4.24
Cisco Adaptive Security Appliance Software	=9.12.4.26
Cisco Adaptive Security Appliance Software	=9.12.4.29
Cisco Adaptive Security Appliance Software	=9.12.4.30
Cisco Adaptive Security Appliance Software	=9.12.4.35
Cisco Adaptive Security Appliance Software	=9.12.4.37
Cisco Adaptive Security Appliance Software	=9.12.4.38
Cisco Adaptive Security Appliance Software	=9.12.4.39
Cisco Adaptive Security Appliance Software	=9.12.4.40
Cisco Adaptive Security Appliance Software	=9.12.4.41
Cisco Adaptive Security Appliance Software	=9.14.1
Cisco Adaptive Security Appliance Software	=9.14.1.6
Cisco Adaptive Security Appliance Software	=9.14.1.10
Cisco Adaptive Security Appliance Software	=9.14.1.15
Cisco Adaptive Security Appliance Software	=9.14.1.19
Cisco Adaptive Security Appliance Software	=9.14.1.30
Cisco Adaptive Security Appliance Software	=9.14.2
Cisco Adaptive Security Appliance Software	=9.14.2.4
Cisco Adaptive Security Appliance Software	=9.14.2.8
Cisco Adaptive Security Appliance Software	=9.14.2.13
Cisco Adaptive Security Appliance Software	=9.14.2.15
Cisco Adaptive Security Appliance Software	=9.14.3
Cisco Adaptive Security Appliance Software	=9.14.3.1
Cisco Adaptive Security Appliance Software	=9.14.3.9
Cisco Adaptive Security Appliance Software	=9.14.3.11
Cisco Adaptive Security Appliance Software	=9.14.3.13
Cisco Adaptive Security Appliance Software	=9.14.3.15
Cisco Adaptive Security Appliance Software	=9.14.3.18
Cisco Adaptive Security Appliance Software	=9.14.4
Cisco Adaptive Security Appliance Software	=9.14.4.6
Cisco Adaptive Security Appliance Software	=9.14.4.7
Cisco Adaptive Security Appliance Software	=9.15.1
Cisco Adaptive Security Appliance Software	=9.15.1.7
Cisco Adaptive Security Appliance Software	=9.15.1.10
Cisco Adaptive Security Appliance Software	=9.15.1.15
Cisco Adaptive Security Appliance Software	=9.15.1.16
Cisco Adaptive Security Appliance Software	=9.15.1.17
Cisco Adaptive Security Appliance Software	=9.15.1.21
Cisco Adaptive Security Appliance Software	=9.16.1
Cisco Adaptive Security Appliance Software	=9.16.1.28
Cisco Adaptive Security Appliance Software	=9.16.2
Cisco Adaptive Security Appliance Software	=9.16.2.3
Cisco Adaptive Security Appliance Software	=9.16.2.7
Cisco Adaptive Security Appliance Software	=9.16.2.11
Cisco Adaptive Security Appliance Software	=9.16.2.13
Cisco Adaptive Security Appliance Software	=9.16.2.14
Cisco Adaptive Security Appliance Software	=9.16.3
Cisco Adaptive Security Appliance Software	=9.16.3.3
Cisco Adaptive Security Appliance Software	=9.16.3.14
Cisco Adaptive Security Appliance Software	=9.17.1
Cisco Adaptive Security Appliance Software	=9.17.1.7
Cisco Adaptive Security Appliance Software	=9.17.1.9
Cisco Adaptive Security Appliance Software	=9.18.1
Cisco Firepower Threat Defense	=6.2.3
Cisco Firepower Threat Defense	=6.2.3.0
Cisco Firepower Threat Defense	=6.2.3.1
Cisco Firepower Threat Defense	=6.2.3.2
Cisco Firepower Threat Defense	=6.2.3.3
Cisco Firepower Threat Defense	=6.2.3.4
Cisco Firepower Threat Defense	=6.2.3.5
Cisco Firepower Threat Defense	=6.2.3.6
Cisco Firepower Threat Defense	=6.2.3.7
Cisco Firepower Threat Defense	=6.2.3.8
Cisco Firepower Threat Defense	=6.2.3.9
Cisco Firepower Threat Defense	=6.2.3.10
Cisco Firepower Threat Defense	=6.2.3.11
Cisco Firepower Threat Defense	=6.2.3.12
Cisco Firepower Threat Defense	=6.2.3.13
Cisco Firepower Threat Defense	=6.2.3.14
Cisco Firepower Threat Defense	=6.2.3.15
Cisco Firepower Threat Defense	=6.2.3.16
Cisco Firepower Threat Defense	=6.2.3.17
Cisco Firepower Threat Defense	=6.2.3.18
Cisco Firepower Threat Defense	=6.4.0
Cisco Firepower Threat Defense	=6.4.0.1
Cisco Firepower Threat Defense	=6.4.0.2
Cisco Firepower Threat Defense	=6.4.0.3
Cisco Firepower Threat Defense	=6.4.0.4
Cisco Firepower Threat Defense	=6.4.0.5
Cisco Firepower Threat Defense	=6.4.0.6
Cisco Firepower Threat Defense	=6.4.0.7
Cisco Firepower Threat Defense	=6.4.0.8
Cisco Firepower Threat Defense	=6.4.0.9
Cisco Firepower Threat Defense	=6.4.0.10
Cisco Firepower Threat Defense	=6.4.0.11
Cisco Firepower Threat Defense	=6.4.0.12
Cisco Firepower Threat Defense	=6.4.0.13
Cisco Firepower Threat Defense	=6.4.0.14
Cisco Firepower Threat Defense	=6.4.0.15
Cisco Firepower Threat Defense	=6.6.0
Cisco Firepower Threat Defense	=6.6.0.1
Cisco Firepower Threat Defense	=6.6.1
Cisco Firepower Threat Defense	=6.6.3
Cisco Firepower Threat Defense	=6.6.4
Cisco Firepower Threat Defense	=6.6.5
Cisco Firepower Threat Defense	=6.6.5.1
Cisco Firepower Threat Defense	=6.6.5.2
Cisco Firepower Threat Defense	=6.7.0
Cisco Firepower Threat Defense	=6.7.0.1
Cisco Firepower Threat Defense	=6.7.0.2
Cisco Firepower Threat Defense	=6.7.0.3
Cisco Firepower Threat Defense	=7.0.0
Cisco Firepower Threat Defense	=7.0.0.1
Cisco Firepower Threat Defense	=7.0.1
Cisco Firepower Threat Defense	=7.0.1.1
Cisco Firepower Threat Defense	=7.0.2
Cisco Firepower Threat Defense	=7.0.2.1
Cisco Firepower Threat Defense	=7.0.3
Cisco Firepower Threat Defense	=7.1.0
Cisco Firepower Threat Defense	=7.1.0.1
Cisco Firepower Threat Defense	=7.1.0.2

Never miss a vulnerability like this again

Reference Links

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-webvpn-dos-3GhZQBAS

Frequently Asked Questions

What is the severity of CVE-2023-20095?
The severity of CVE-2023-20095 is critical, as it allows unauthenticated remote attackers to cause a denial of service condition.
How do I fix CVE-2023-20095?
To fix CVE-2023-20095, upgrade to a version of Cisco Adaptive Security Appliance or Firepower Threat Defense software that is not affected.
Which Cisco products are affected by CVE-2023-20095?
The vulnerable products include specific versions of Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software.
What potential impact does CVE-2023-20095 have on my network?
CVE-2023-20095 can lead to a denial of service, disrupting remote access VPN services for users.
Is there a workaround for CVE-2023-20095?
Currently, there are no documented workarounds for CVE-2023-20095; updating the software is the recommended action.

agent/type
agent/softwarecombine
agent/first-publish-date
agent/severity
agent/weakness
agent/author
agent/references
agent/event
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco adaptive security appliance
version/cisco adaptive security appliance/9.8.1
version/cisco adaptive security appliance/9.8.1.5
version/cisco adaptive security appliance/9.8.1.7
version/cisco adaptive security appliance/9.8.2
version/cisco adaptive security appliance/9.8.2.8
version/cisco adaptive security appliance/9.8.2.14
version/cisco adaptive security appliance/9.8.2.15
version/cisco adaptive security appliance/9.8.2.17
canonical/cisco adaptive security appliance software
version/cisco adaptive security appliance software/9.8.2.20
version/cisco adaptive security appliance software/9.8.2.24
version/cisco adaptive security appliance software/9.8.2.26
version/cisco adaptive security appliance software/9.8.2.28
version/cisco adaptive security appliance software/9.8.2.33
version/cisco adaptive security appliance software/9.8.2.35
version/cisco adaptive security appliance software/9.8.2.38
version/cisco adaptive security appliance software/9.8.3
version/cisco adaptive security appliance software/9.8.3.8
version/cisco adaptive security appliance software/9.8.3.11
version/cisco adaptive security appliance software/9.8.3.14
version/cisco adaptive security appliance software/9.8.3.16
version/cisco adaptive security appliance software/9.8.3.18
version/cisco adaptive security appliance software/9.8.3.21
version/cisco adaptive security appliance software/9.8.3.26
version/cisco adaptive security appliance software/9.8.3.29
version/cisco adaptive security appliance software/9.8.4
version/cisco adaptive security appliance software/9.8.4.3
version/cisco adaptive security appliance software/9.8.4.7
version/cisco adaptive security appliance software/9.8.4.8
version/cisco adaptive security appliance software/9.8.4.10
version/cisco adaptive security appliance software/9.8.4.12
version/cisco adaptive security appliance software/9.8.4.15
version/cisco adaptive security appliance software/9.8.4.17
version/cisco adaptive security appliance software/9.8.4.20
version/cisco adaptive security appliance software/9.8.4.22
version/cisco adaptive security appliance software/9.8.4.25
version/cisco adaptive security appliance software/9.8.4.26
version/cisco adaptive security appliance software/9.8.4.29
version/cisco adaptive security appliance software/9.8.4.32
version/cisco adaptive security appliance software/9.8.4.33
version/cisco adaptive security appliance software/9.8.4.34
version/cisco adaptive security appliance software/9.8.4.35
version/cisco adaptive security appliance software/9.8.4.39
version/cisco adaptive security appliance software/9.8.4.40
version/cisco adaptive security appliance software/9.8.4.41
version/cisco adaptive security appliance software/9.8.4.43
version/cisco adaptive security appliance software/9.8.4.44
version/cisco adaptive security appliance software/9.8.4.45
version/cisco adaptive security appliance software/9.12.1
version/cisco adaptive security appliance software/9.12.1.2
version/cisco adaptive security appliance software/9.12.1.3
version/cisco adaptive security appliance software/9.12.2
version/cisco adaptive security appliance software/9.12.2.1
version/cisco adaptive security appliance software/9.12.2.4
version/cisco adaptive security appliance software/9.12.2.5
version/cisco adaptive security appliance software/9.12.2.9
version/cisco adaptive security appliance software/9.12.3
version/cisco adaptive security appliance software/9.12.3.2
version/cisco adaptive security appliance software/9.12.3.7
version/cisco adaptive security appliance software/9.12.3.9
version/cisco adaptive security appliance software/9.12.4
version/cisco adaptive security appliance software/9.12.4.4
version/cisco adaptive security appliance software/9.12.4.7
version/cisco adaptive security appliance software/9.12.4.8
version/cisco adaptive security appliance software/9.12.4.10
version/cisco adaptive security appliance software/9.12.4.13
version/cisco adaptive security appliance software/9.12.4.18
version/cisco adaptive security appliance software/9.12.4.24
version/cisco adaptive security appliance software/9.12.4.26
version/cisco adaptive security appliance software/9.12.4.29
version/cisco adaptive security appliance software/9.12.4.30
version/cisco adaptive security appliance software/9.12.4.35
version/cisco adaptive security appliance software/9.12.4.37
version/cisco adaptive security appliance software/9.12.4.38
version/cisco adaptive security appliance software/9.12.4.39
version/cisco adaptive security appliance software/9.12.4.40
version/cisco adaptive security appliance software/9.12.4.41
version/cisco adaptive security appliance software/9.14.1
version/cisco adaptive security appliance software/9.14.1.6
version/cisco adaptive security appliance software/9.14.1.10
version/cisco adaptive security appliance software/9.14.1.15
version/cisco adaptive security appliance software/9.14.1.19
version/cisco adaptive security appliance software/9.14.1.30
version/cisco adaptive security appliance software/9.14.2
version/cisco adaptive security appliance software/9.14.2.4
version/cisco adaptive security appliance software/9.14.2.8
version/cisco adaptive security appliance software/9.14.2.13
version/cisco adaptive security appliance software/9.14.2.15
version/cisco adaptive security appliance software/9.14.3
version/cisco adaptive security appliance software/9.14.3.1
version/cisco adaptive security appliance software/9.14.3.9
version/cisco adaptive security appliance software/9.14.3.11
version/cisco adaptive security appliance software/9.14.3.13
version/cisco adaptive security appliance software/9.14.3.15
version/cisco adaptive security appliance software/9.14.3.18
version/cisco adaptive security appliance software/9.14.4
version/cisco adaptive security appliance software/9.14.4.6
version/cisco adaptive security appliance software/9.14.4.7
version/cisco adaptive security appliance software/9.15.1
version/cisco adaptive security appliance software/9.15.1.7
version/cisco adaptive security appliance software/9.15.1.10
version/cisco adaptive security appliance software/9.15.1.15
version/cisco adaptive security appliance software/9.15.1.16
version/cisco adaptive security appliance software/9.15.1.17
version/cisco adaptive security appliance software/9.15.1.21
version/cisco adaptive security appliance software/9.16.1
version/cisco adaptive security appliance software/9.16.1.28
version/cisco adaptive security appliance software/9.16.2
version/cisco adaptive security appliance software/9.16.2.3
version/cisco adaptive security appliance software/9.16.2.7
version/cisco adaptive security appliance software/9.16.2.11
version/cisco adaptive security appliance software/9.16.2.13
version/cisco adaptive security appliance software/9.16.2.14
version/cisco adaptive security appliance software/9.16.3
version/cisco adaptive security appliance software/9.16.3.3
version/cisco adaptive security appliance software/9.16.3.14
version/cisco adaptive security appliance software/9.17.1
version/cisco adaptive security appliance software/9.17.1.7
version/cisco adaptive security appliance software/9.17.1.9
version/cisco adaptive security appliance software/9.18.1
canonical/cisco firepower threat defense
version/cisco firepower threat defense/6.2.3
version/cisco firepower threat defense/6.2.3.0
version/cisco firepower threat defense/6.2.3.1
version/cisco firepower threat defense/6.2.3.2
version/cisco firepower threat defense/6.2.3.3
version/cisco firepower threat defense/6.2.3.4
version/cisco firepower threat defense/6.2.3.5
version/cisco firepower threat defense/6.2.3.6
version/cisco firepower threat defense/6.2.3.7
version/cisco firepower threat defense/6.2.3.8
version/cisco firepower threat defense/6.2.3.9
version/cisco firepower threat defense/6.2.3.10
version/cisco firepower threat defense/6.2.3.11
version/cisco firepower threat defense/6.2.3.12
version/cisco firepower threat defense/6.2.3.13
version/cisco firepower threat defense/6.2.3.14
version/cisco firepower threat defense/6.2.3.15
version/cisco firepower threat defense/6.2.3.16
version/cisco firepower threat defense/6.2.3.17
version/cisco firepower threat defense/6.2.3.18
version/cisco firepower threat defense/6.4.0
version/cisco firepower threat defense/6.4.0.1
version/cisco firepower threat defense/6.4.0.2
version/cisco firepower threat defense/6.4.0.3
version/cisco firepower threat defense/6.4.0.4
version/cisco firepower threat defense/6.4.0.5
version/cisco firepower threat defense/6.4.0.6
version/cisco firepower threat defense/6.4.0.7
version/cisco firepower threat defense/6.4.0.8
version/cisco firepower threat defense/6.4.0.9
version/cisco firepower threat defense/6.4.0.10
version/cisco firepower threat defense/6.4.0.11
version/cisco firepower threat defense/6.4.0.12
version/cisco firepower threat defense/6.4.0.13
version/cisco firepower threat defense/6.4.0.14
version/cisco firepower threat defense/6.4.0.15
version/cisco firepower threat defense/6.6.0
version/cisco firepower threat defense/6.6.0.1
version/cisco firepower threat defense/6.6.1
version/cisco firepower threat defense/6.6.3
version/cisco firepower threat defense/6.6.4
version/cisco firepower threat defense/6.6.5
version/cisco firepower threat defense/6.6.5.1
version/cisco firepower threat defense/6.6.5.2
version/cisco firepower threat defense/6.7.0
version/cisco firepower threat defense/6.7.0.1
version/cisco firepower threat defense/6.7.0.2
version/cisco firepower threat defense/6.7.0.3
version/cisco firepower threat defense/7.0.0
version/cisco firepower threat defense/7.0.0.1
version/cisco firepower threat defense/7.0.1
version/cisco firepower threat defense/7.0.1.1
version/cisco firepower threat defense/7.0.2
version/cisco firepower threat defense/7.0.2.1
version/cisco firepower threat defense/7.0.3
version/cisco firepower threat defense/7.1.0
version/cisco firepower threat defense/7.1.0.1
version/cisco firepower threat defense/7.1.0.2