CVE-2024-20297 | Cisco ASA/Firepower Threat Defense AnyConnect authentication spoofing (cisco-sa-asaftd-acl-bypass-VvnLNKqf)

Posted by Angelo Barbosa | Oct 23, 2024 | CVE

A vulnerability was found in Cisco ASA and Firepower Threat Defense. It has been classified as critical. This affects an unknown part of the component AnyConnect. The manipulation leads to authentication bypass by spoofing.

This vulnerability is uniquely identified as CVE-2024-20297. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20297 | Cisco ASA/Firepower Threat Defense AnyConnect authentication spoofing (cisco-sa-asaftd-acl-bypass-VvnLNKqf)

Related Posts

CVE-2023-47039 | Perl on Windows cmd.exe uncontrolled search path

CVE-2024-44910 | NASA CryptoLib 1.3.0 AOS Subsystem crypto_aos.c out-of-bounds

CVE-2024-39820 | Zoom Workplace Desktop App on macOS uncontrolled search path (ZSB-24027)

CVE-2023-41610 | Victure PC420 1.1.39 missing encryption