5.8
CVE-2026-20006 - Cisco Firepower Threat Defense Software and Cisco FirePOWER Services TLS with Snort 3 Denial of Ser…
A vulnerability in the TLS cryptography functionality of the Snort 3 Detection Engine of Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to unexpectedly restart, resulting in a denial of service (DoS) conditio…
6.1
CVE-2026-20149 - Remote Cross‑Site Scripting via Improper Input Filtering in Cisco Webex Meetings
A vulnerability in Cisco Webex could have allowed an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. Cisco has addressed this vulnerability, and no customer action is needed. This vulnerability was due to improper filtering of user-supplied input. Prior to this v…
8.6
CVE-2026-20082 - DoS via TCP SYN mismanagement in Cisco ASA
A vulnerability in the handling of the embryonic connection limits in Cisco Secure Firewall Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause incoming TCP SYN packets to be dropped incorrectly. This vulnerability is due to improper handling of ne…
7.2
CVE-2026-20062 -
A vulnerability in the CLI of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software in multiple context mode could allow an authenticated, local attacker with administrative privileges in one context to copy files to or from another context, including configuration files. This vulner…
7.7
CVE-2026-20049 - Insufficient Memory Allocation in IKEv2 GCM Decryption Causes DoS on Cisco ASA/FTD
A vulnerability in the processing of Galois/Counter Mode (GCM)-encrypted Internet Key Exchange version 2 (IKEv2) IPsec traffic of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, remote attacker to…
5.8
CVE-2026-20015 - Denial‑of‑Service via Memory Leak in IKEv2 Processing
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device that may impact the availability of services to devices elsewhere in the network. This vulnerabi…
7.7
CVE-2026-20014 - Authenticated Remote IKEv2 DoS Causing Device Reload
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an authenticated, remote attacker with valid VPN user credentials to cause a DoS condition on an affected device that may also impact the availability of services to devices elsewher…
5.8
CVE-2026-20013 - Memory Exhaustion in IKEv2 Causing Remote DoS on Cisco ASA and FTD
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device that may also impact the availability of services to devices elsewhere in the network. This vuln…
5.3
CVE-2026-20106 - Remote Access SSL VPN Memory Exhaustion DoS
A vulnerability in the Remote Access SSL VPN, HTTP management and MUS functionality, of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to exhaust device memory resulting in a denial o…
7.7
CVE-2026-20105 - Remote Access SSL VPN can cause device reload due to memory exhaustion
A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Threat Defense (FTD) Software could allow an authenticated, remote attacker with a valid VPN connection to exhaust device memory resulting in a denial o…