CVE-2023-20269 — Actively Exploited: Adaptive Security Appliance and Firepower Threat Defense (Cisco)
Cisco Adaptive Security Appliance and Firepower Threat Defense contain an unauthorized access vulnerability that could allow an unauthenticated, remote attacker to conduct a brute force attack in an attempt to identify valid username and password combinations or establish a clientless SSL VPN session with an unauthoriz
| CVE ID | CVE-2023-20269 |
|---|---|
| Vendor | Cisco |
| Product | Adaptive Security Appliance and Firepower Threat Defense |
| Vulnerability name | Cisco Adaptive Security Appliance and Firepower Threat Defense Unauthorized Access Vulnerability |
| Date added | 2023-09-13 |
| Remediation due | 2023-10-04 |
| Known ransomware use | Known |
| Required action | Apply mitigations per vendor instructions for group-lock and vpn-simultaneous-logins or discontinue use of the product for unsupported devices. |
| Description | Cisco Adaptive Security Appliance and Firepower Threat Defense contain an unauthorized access vulnerability that could allow an unauthenticated, remote attacker to conduct a brute force attack in an attempt to identify valid username and password combinations or establish a clientless SSL VPN session with an unauthorized user. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →