wid-sec-w-2026-0605 · Published 2026-03-04 · View on BSI CERT-Bund ↗

Cisco Secure Firewall Threat Defense: Multiple Vulnerabilities

CVSS 6.8 MEDIUM

Risk Summary

A vulnerability in the Cisco FXOS Software CLI feature for Cisco Secure Firewall ASA Software and Secure FTD Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system with root-level privileges. To exploit this vulnerability, the attacker must have valid administrative credentials on an affected device. This vulnerability is due to insufficient input validation of user-supplied command arguments. An attacker could exploit this vulnerability by submitting crafted input for specific CLI commands. A successful exploit could allow the attacker to execute commands on the underlying operating system with root-level privileges.

CVEs (8)

CVE-2026-20006 CVE-2026-20007 CVE-2026-20050 CVE-2026-20052 CVE-2026-20016 CVE-2026-20017 CVE-2026-20063 CVE-2026-20064

Affected Vendors

Cisco

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more