A vulnerability in the management and VPN web servers of Cisco Secure Firewall ASA Software and Secure FTD Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a DoS condition.
This vulnerability is due to improper validation of user-supplied input on an interface with VPN web services. An attacker could exploit this vulnerability by sending crafted HTTP requests to a targeted web server on an affected device. A successful exploit could allow the attacker to cause a DoS condition when the device reloads.
                
            References
                    Configurations
                    No configuration.
History
                    14 Aug 2025, 17:15
| Type | Values Removed | Values Added | 
|---|---|---|
| New CVE | 
Information
                Published : 2025-08-14 17:15
Updated : 2025-08-15 13:12
NVD link : CVE-2025-20243
Mitre link : CVE-2025-20243
CVE.ORG link : CVE-2025-20243
JSON object : View
Products Affected
                No product.
CWE
                
                    
                        
                        CWE-835
                        
            Loop with Unreachable Exit Condition ('Infinite Loop')
