COOEY // HUBcompliance · community · intelligence

FAIL › dossier

Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) product

6
failure events
1
zero-days
1
RCEs
6
on KEV
2
critical
80
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 6 events

DateEventSevFlagsShameSummary
2024-02-15 CVE-2020-3259 critical ⌖KEV 80 Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an information disclosure vulnerability. An attacker could retrieve memory contents on an affected device, which could lead to the disclosure of confidential information due to a buffer tracking is
2021-11-03 CVE-2020-3580 critical ⌖KEV 80 Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an insufficient input validation vulnerability for user-supplied input by the web services interface. Successful exploitation could allow an attacker to perform cross-site scripting (XSS) in the c
2024-04-24 CVE-2024-20359 high ⚡RCE ◐0day ⌖KEV 65 Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain a privilege escalation vulnerability that can allow local privilege escalation from Administrator to root.
2024-10-24 CVE-2024-20481 high ⌖KEV 50 Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain a missing release of resource after effective lifetime vulnerability that could allow an unauthenticated, remote attacker to cause a denial-of-service (DoS) of the RAVPN service.
2024-04-24 CVE-2024-20353 high ⌖KEV 50 Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an infinite loop vulnerability that can lead to remote denial of service condition.
2021-11-03 CVE-2020-3452 high ⌖KEV 50 Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an improper input validation vulnerability when HTTP requests process URLs. An attacker could exploit this vulnerability by sending a crafted HTTP request containing directory traversal character