CVE-2022-20795 The Datagram TLS vulnerability in ASA and FTD software could allow an unauthenticated, remote attacker to cause high CPU utilization.

Cisco has assigned the identifier for this vulnerability to the Cisco ASA software. Cisco has assigned the identifier for this vulnerability to the Cisco ASA software. The Cisco FTD software has received the following identifier: CVE-2017-5365. Cisco has assigned the following Cisco IOS XE Software CVE IDs: CVE-2017-5366. Cisco has assigned the following Cisco IOS Software CVE IDs: CVE-2017-5367, CVE-2017-5368, CVE-2017-5369, CVE-2017-5370, CVE-2017-5371, CVE-2017-5372, CVE-2017-5373, CVE-2017-5374, CVE-2017-5375, CVE-2017-5376, CVE-2017-5377, CVE-2017-5378, CVE-2017-5379, CVE-2017-5380, CVE-2017-5381, CVE-2017-5382, CVE-2017-5383, CVE-2017-5384, CVE-2017-5385, and CVE-2017-5386. Cisco has assigned the following Cisco IOS Software CVE IDs: CVE-2017-5365. Cisco has assigned the following Cisco IOS Software CVE IDs: CVE-2017-5366. Cisco has assigned the following Cisco IOS Software CVE IDs: CVE-2017-5367, CVE-2017-5368, CVE-2017-5369, CVE-2017-5370, CVE-

Vulnerability Description br

Cisco FTD software is affected by remote code execution vulnerability in the Cisco ASA Software. This vulnerability is documented as CVE-2017-5365, and can be exploited by sending malformed packets to the affected device on TCP port 443.

References:

Cisco has assigned the identifier for this vulnerability to the Cisco ASA software.
Cisco has assigned the following Cisco IOS Software CVE IDs: CVE-2017-5366.
Cisco has assigned the following Cisco IOS Software CVE IDs: CVE-2017-5367, CVE-2017-5368, CVE-2017-5370, CVE-2017-5371, and CVE-2017-5372.
Cisco has assigned the following Cisco IOS Software CVE IDs: CVE-2017-5380, CVE-2017-5381, and CVE-2017
Please provide a URL or URLs of where you sourced your information from

References br https://www.cisco.com/c/en/us/about/security-center/vulnerabilities-definitions.html

Description of Cisco ASA and IOS Software CVEs

Cisco ASA Software
Cisco has assigned the identifier for this vulnerability to the Cisco ASA software. Cisco has assigned the identifier for this vulnerability to the Cisco ASA software. The Cisco FTD software has received the following identifier: CVE-2017-5365. Cisco has assigned the following Cisco IOS XE Software CVE IDs: CVE-2017-5366. Cisco has assigned the following Cisco IOS Software CVE IDs: CVE-2017-5367, CVE-2017-5368, CVE-2017-5369, CVE-2017-5370,CVE-2017-5371,CVE-2017-5372,CVE-2017-5373,CVE-2017-5374,CVE-2017-5375,CVE-[2], [3], [4], [6], [7] and [8].

Timeline

Published on: 04/21/2022 19:15:00 UTC
Last modified on: 05/04/2022 17:59:00 UTC

References

• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vpndtls-dos-TunzLEV
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-20795