Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2023-20042

A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an implementation error within the SSL/TLS session handling process that can prevent the release of a session handler under specific conditions. An attacker could exploit this vulnerability by sending crafted SSL/TLS traffic to an affected device, increasing the probability of session handler leaks. A successful exploit could allow the attacker to eventually deplete the available session handler pool, preventing new sessions from being established and causing a DoS condition.

  • Published: Nov 1, 2023
  • Updated: Nov 15, 2023
  • CVE: CVE-2023-20042
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 8.6
  • AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

No CWE or OWASP classifications available.

Software From Fixed in
cisco / firepower_threat_defense 7.1.0 7.1.0.x
cisco / firepower_threat_defense 7.0.0 7.0.0.x
cisco / firepower_threat_defense 7.2.0.1 7.2.0.1.x
cisco / firepower_threat_defense 7.0.1 7.0.1.x
cisco / firepower_threat_defense 7.0.0.1 7.0.0.1.x
cisco / firepower_threat_defense 7.0.1.1 7.0.1.1.x
cisco / firepower_threat_defense 7.0.2 7.0.2.x
cisco / firepower_threat_defense 7.0.2.1 7.0.2.1.x
cisco / firepower_threat_defense 7.0.3 7.0.3.x
cisco / firepower_threat_defense 7.0.4 7.0.4.x
cisco / firepower_threat_defense 7.1.0.1 7.1.0.1.x
cisco / firepower_threat_defense 7.1.0.2 7.1.0.2.x
cisco / firepower_threat_defense 7.2.0 7.2.0.x
cisco / firepower_threat_defense 7.2.1 7.2.1.x
cisco / firepower_threat_defense 7.2.2 7.2.2.x
cisco / firepower_threat_defense 7.2.3 7.2.3.x
cisco / firepower_threat_defense 7.3.1.1 7.3.1.1.x
cisco / firepower_threat_defense 7.3.1 7.3.1.x
cisco / firepower_threat_defense 7.3.0 7.3.0.x
cisco / firepower_threat_defense 7.1.0.3 7.1.0.3.x
cisco / firepower_threat_defense 7.0.5 7.0.5.x
cisco / adaptive_security_appliance_software 9.16.1 9.16.1.x
cisco / adaptive_security_appliance_software 9.17.1 9.17.1.x
cisco / adaptive_security_appliance_software 9.16.1.28 9.16.1.28.x
cisco / adaptive_security_appliance_software 9.17.1.7 9.17.1.7.x
cisco / adaptive_security_appliance_software 9.16.3.14 9.16.3.14.x
cisco / adaptive_security_appliance_software 9.16.4 9.16.4.x
cisco / adaptive_security_appliance_software 9.18.2.5 9.18.2.5.x
cisco / adaptive_security_appliance_software 9.17.1.10 9.17.1.10.x
cisco / adaptive_security_appliance_software 9.17.1.13 9.17.1.13.x
cisco / adaptive_security_appliance_software 9.18.1 9.18.1.x
cisco / adaptive_security_appliance_software 9.18.1.3 9.18.1.3.x
cisco / adaptive_security_appliance_software 9.16.2.3 9.16.2.3.x
cisco / adaptive_security_appliance_software 9.16.2.7 9.16.2.7.x
cisco / adaptive_security_appliance_software 9.16.2.11 9.16.2.11.x
cisco / adaptive_security_appliance_software 9.16.2.13 9.16.2.13.x
cisco / adaptive_security_appliance_software 9.16.2.14 9.16.2.14.x
cisco / adaptive_security_appliance_software 9.17.1.11 9.17.1.11.x
cisco / adaptive_security_appliance_software 9.17.1.15 9.17.1.15.x
cisco / adaptive_security_appliance_software 9.17.1.9 9.17.1.9.x
cisco / adaptive_security_appliance_software 9.16.2 9.16.2.x
cisco / adaptive_security_appliance_software 9.16.3.3 9.16.3.3.x
cisco / adaptive_security_appliance_software 9.16.3 9.16.3.x
cisco / adaptive_security_appliance_software 9.18.2 9.18.2.x
cisco / adaptive_security_appliance_software 9.19.1 9.19.1.x
cisco / adaptive_security_appliance_software 9.18.2.7 9.18.2.7.x
cisco / adaptive_security_appliance_software 9.17.1.20 9.17.1.20.x
cisco / adaptive_security_appliance_software 9.16.4.9 9.16.4.9.x
cisco / adaptive_security_appliance_software 9.16.3.23 9.16.3.23.x
cisco / adaptive_security_appliance_software 9.16.3.19 9.16.3.19.x
cisco / adaptive_security_appliance_software 9.16.3.15 9.16.3.15.x