wid-sec-w-2026-0603 · Published 2026-03-04 · View on BSI CERT-Bund ↗

Cisco ASA (Adaptive Security Appliance) and Secure Firewall Threat Defense: Multiple Vulnerabilities

CVSS 8.6 HIGH

Risk Summary

A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. If OSPF authentication is enabled, the attacker must know the secret key to exploit this vulnerability. This vulnerability is due to insufficient input validation when processing OSPF update packets. An attacker could exploit this vulnerability by sending crafted OSPF update packets. A successful exploit could allow the attacker to create a buffer overflow, causing the affected device to reload, resulting in a DoS condition.

CVEs (21)

CVE-2026-20008 CVE-2026-20013 CVE-2026-20014 CVE-2026-20015 CVE-2026-20020 CVE-2026-20021 CVE-2026-20022 CVE-2026-20023 CVE-2026-20024 CVE-2026-20025 CVE-2026-20039 CVE-2026-20049 CVE-2026-20069 CVE-2026-20070 CVE-2026-20073 CVE-2026-20100 CVE-2026-20101 CVE-2026-20102 CVE-2026-20103 CVE-2026-20105 CVE-2026-20106

Affected Vendors

Cisco

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more