Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2022-20927

A vulnerability in the SSL/TLS client of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.

This vulnerability is due to improper memory management when a device initiates SSL/TLS connections. An attacker could exploit this vulnerability by ensuring that the device will connect to an SSL/TLS server that is using specific encryption parameters. A successful exploit could allow the attacker to cause the affected device to unexpectedly reload, resulting in a DoS condition.

  • Published: Nov 15, 2022
  • Updated: Nov 8, 2023
  • CVE: CVE-2022-20927
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWEs:

Software From Fixed in
cisco / firepower_threat_defense 6.6.0.1 6.6.0.1.x
cisco / firepower_threat_defense 6.6.0 6.6.0.x
cisco / firepower_threat_defense 6.7.0 6.7.0.3.x
cisco / firepower_threat_defense 6.5.0 6.5.0.5.x
cisco / firepower_threat_defense 6.6.1 6.6.1.x
cisco / firepower_threat_defense 6.6.3 6.6.3.x
cisco / firepower_threat_defense 6.6.4 6.6.4.x
cisco / firepower_threat_defense 6.6.5 6.6.5.x
cisco / firepower_threat_defense 6.6.5.1 6.6.5.1.x
cisco / adaptive_security_appliance_software 9.13.1.13 9.13.1.13.x
cisco / adaptive_security_appliance_software 9.14.1.30 9.14.1.30.x
cisco / adaptive_security_appliance_software 9.13.1.12 9.13.1.12.x
cisco / adaptive_security_appliance_software 9.14.1.15 9.14.1.15.x
cisco / adaptive_security_appliance_software 9.13.1 9.13.1.x
cisco / adaptive_security_appliance_software 9.14.2 9.14.2.x
cisco / adaptive_security_appliance_software 9.14.2.4 9.14.2.4.x
cisco / adaptive_security_appliance_software 9.14.2.8 9.14.2.8.x
cisco / adaptive_security_appliance_software 9.14.2.13 9.14.2.13.x
cisco / adaptive_security_appliance_software 9.14.2.15 9.14.2.15.x
cisco / adaptive_security_appliance_software 9.15.1.15 9.15.1.15.x
cisco / adaptive_security_appliance_software 9.15.1.16 9.15.1.16.x
cisco / adaptive_security_appliance_software 9.15.1.17 9.15.1.17.x
cisco / adaptive_security_appliance_software 9.15.1.1 9.15.1.1.x
cisco / adaptive_security_appliance_software 9.13.1.7 9.13.1.7.x
cisco / adaptive_security_appliance_software 9.14.1.10 9.14.1.10.x
cisco / adaptive_security_appliance_software 9.14.1.19 9.14.1.19.x
cisco / adaptive_security_appliance_software 9.14.3 9.14.3.x
cisco / adaptive_security_appliance_software 9.14.3.9 9.14.3.9.x
cisco / adaptive_security_appliance_software 9.15.1 9.15.1.x
cisco / adaptive_security_appliance_software 9.15.1.10 9.15.1.10.x
cisco / adaptive_security_appliance_software 9.15.1.21 9.15.1.21.x
cisco / adaptive_security_appliance_software 9.13.1.16 9.13.1.16.x
cisco / adaptive_security_appliance_software 9.13.1.19 9.13.1.19.x
cisco / adaptive_security_appliance_software 9.13.1.21 9.13.1.21.x
cisco / adaptive_security_appliance_software 9.14.1 9.14.1.x
cisco / adaptive_security_appliance_software 9.14.3.13 9.14.3.13.x
cisco / adaptive_security_appliance_software 9.14.3.18 9.14.3.18.x
cisco / adaptive_security_appliance_software 9.14.3.15 9.14.3.15.x
cisco / adaptive_security_appliance_software 9.13.1.2 9.13.1.2.x
cisco / adaptive_security_appliance_software 9.13.1.10 9.13.1.10.x
cisco / adaptive_security_appliance_software 9.14.3.1 9.14.3.1.x
cisco / adaptive_security_appliance_software 9.14.3.11 9.14.3.11.x
cisco / adaptive_security_appliance_software 9.15.1.7 9.15.1.7.x