Cisco ASA/FTD CVE-2021-34721 DoS Vulnerability Advisory

Critical Vulnerability Information Vulnerability Overview CVE ID: CVE-2021-34721 CVSS Score: 9.8 (Critical) Affected Products: Cisco ASA Software, Cisco Firepower Threat Defense (FTD) Software, Cisco Secure Firewall Remote Access SSL VPN Vulnerability Type: Denial of Service (DoS) Affected Product Versions Cisco ASA Software: - Versions: 9.12(4), 9.13(2), 9.14(1), 9.15(1), 9.16(1), 9.17(1), 9.18(1), 9.19(1), 9.20(1) Cisco FTD Software: - Versions: 6.6.0, 6.7.0, 6.8.0, 7.0.0, 7.1.0, 7.2.0, 7.3.0, 7.4.0, 7.5.0, 7.6.0 Vulnerability Description An attacker can send a specially crafted HTTP request to the affected device, causing it to crash and reboot. This results in service disruption until the device automatically recovers. Solutions and Mitigation Measures Software Update: Cisco has released software updates to fix this vulnerability. Temporary Workarounds: - Configure Access Control Lists (ACLs) to restrict access to management interfaces and SSL VPN services. - Use firewall rules to block traffic from untrusted sources. Configuration Changes: Ensure only authorized users can access management interfaces and SSL VPN services. Advisory and Reference Links Advisory Date: July 28, 2021 Reference Link: Cisco Security Advisory ``` This summary outlines the key details of the vulnerability, including affected products and versions, vulnerability type, CVSS score, and mitigation and resolution steps.

Goal Reached Thanks to every supporter — we hit 100%!

Cisco ASA/FTD CVE-2021-34721 DoS Vulnerability Advisory