CVE-2024-20353
Cisco / Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)
Added 2024-04-24
Due 2024-05-01
Cisco ASA and FTD Denial of Service Vulnerability
Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an infinite loop vulnerability that can lead to remote denial of service condition.
Required action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notes: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-websrvs-dos-X8gNucD2; https://nvd.nist.gov/vuln/detail/CVE-2024-20353
Metadata
| Added to KEV | 2024-04-24 |
| Remediation due | 2024-05-01 |
| Ransomware use | Unknown |
| CWEs | CWE-835 |
| Ingested | 2026-04-24 15:03:13 |
Cross-mesh regulatory overlay
If you're breached via this CVE, what disclosure laws and cyber regs fire? Asks LexiWorld and RegulatoryRadar via signed mesh.