← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-20269 — Actively Exploited: Adaptive Security Appliance and Firepower Threat Defense (Cisco)

Cisco Adaptive Security Appliance and Firepower Threat Defense contain an unauthorized access vulnerability that could allow an unauthenticated, remote attacker to conduct a brute force attack in an attempt to identify valid username and password combinations or establish a clientless SSL VPN session with an unauthoriz

CVE IDCVE-2023-20269
VendorCisco
ProductAdaptive Security Appliance and Firepower Threat Defense
Vulnerability nameCisco Adaptive Security Appliance and Firepower Threat Defense Unauthorized Access Vulnerability
Date added2023-09-13
Remediation due2023-10-04
Known ransomware useKnown
Required actionApply mitigations per vendor instructions for group-lock and vpn-simultaneous-logins or discontinue use of the product for unsupported devices.
DescriptionCisco Adaptive Security Appliance and Firepower Threat Defense contain an unauthorized access vulnerability that could allow an unauthenticated, remote attacker to conduct a brute force attack in an attempt to identify valid username and password combinations or establish a clientless SSL VPN session with an unauthorized user.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →