Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-20086

CVSS 8.6 · High EPSS 0.55% · P68
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-20086

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due to improper processing of ICMPv6 messages. An attacker could exploit this vulnerability by sending crafted ICMPv6 messages to a targeted Cisco ASA or FTD system with IPv6 enabled. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
未捕获的异常
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco Firepower Threat Defense和Cisco ASA 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Firepower Threat Defense(FTD)和Cisco ASA都是美国思科(Cisco)公司的产品。Cisco Firepower Threat Defense是一套提供下一代防火墙服务的统一软件。Cisco ASA是一系列应用于企业安全的防火墙。 Cisco Adaptive Security Appliance 和 Cisco Firepower Threat Defense存在安全漏洞,该漏洞源于ICMPv6 处理功能存在一个可能导致拒绝服务的漏洞。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
CiscoCisco Adaptive Security Appliance (ASA) Software 9.8.1 -
CiscoCisco Firepower Threat Defense Software 6.2.3 -

II. Public POCs for CVE-2023-20086

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2023-20086

登录查看更多情报信息。

Same Patch Batch · Cisco · 2023-11-01 · 32 CVEs total

CVE-2023-200489.9 CRITICALCisco Firepower Management Center 安全漏洞
CVE-2023-201758.8 HIGHCisco Identity Services Engine 安全漏洞
CVE-2023-202448.6 HIGHCisco Firepower Threat Defense 安全漏洞
CVE-2023-200838.6 HIGHCisco Firepower Threat Defense 安全漏洞
CVE-2023-200958.6 HIGHCisco Firepower Threat Defense 安全漏洞
CVE-2023-200638.2 HIGHCisco Cisco Firepower Threat Defense Software and Cisco Firepower Management Center Code I
CVE-2023-201557.5 HIGHCisco Firepower Management Center 安全漏洞
CVE-2023-202207.2 HIGHCisco Firepower Management Center 安全漏洞
CVE-2023-202197.2 HIGHCisco Firepower Management Center 安全漏洞
CVE-2023-200426.8 MEDIUMCisco Firepower Threat Defense 跨站脚本漏洞
CVE-2023-201146.5 MEDIUMCisco Firepower Management Center 安全漏洞
CVE-2023-202066.1 MEDIUMCisco Firepower Management Center 安全漏洞
CVE-2023-202646.1 MEDIUMCisco Firepower Threat Defense 安全漏洞
CVE-2023-201706.0 MEDIUMCisco Identity Services Engine 安全漏洞
CVE-2023-200715.8 MEDIUMCisco Firepower Threat Defense 安全漏洞
CVE-2023-202465.8 MEDIUMCisco Catalys 和 Integrated Services Virtual Router 安全漏洞
CVE-2023-202705.8 MEDIUMCisco Firepower Threat Defense 安全漏洞
CVE-2023-202455.8 MEDIUMCisco Firepower Threat Defense 安全漏洞
CVE-2023-202555.3 MEDIUMCisco Meeting Server 安全漏洞
CVE-2023-202475.0 MEDIUMCisco Firepower Threat Defense 安全漏洞

Showing top 20 of 32 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Cisco Adaptive Security Appliance (ASA) Software
Same vendor: Cisco
Same weakness: CWE-248

V. Comments for CVE-2023-20086

No comments yet

Leave a comment