Security Advisory Pulse/CVE-2024-20353
CVE-2024-20353Exploit Available

Cisco ASA Adaptive Security Appliance DoS (ArcaneDoor)

🏭 CiscoCWE-835#DoS#Firewall#Network#State-Sponsored#ArcaneDoor
8.6High
010.0

Vulnerability Description

A denial of service vulnerability in Cisco ASA and Firepower Threat Defense (FTD) software allows unauthenticated remote attackers to cause unexpected device reloads via crafted HTTP requests. Exploited as part of the "ArcaneDoor" state-sponsored espionage campaign.

Recommended Mitigation

Apply Cisco security patches. Enable logging and monitor for suspicious management-plane activity. Implement CoPP (Control Plane Policing) policies.

Affected Products

Cisco ASA
Cisco Firepower Threat Defense (FTD)

Version constraint: Multiple ASA/FTD versions before April 2024 patches

Official References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-websrvs-dos-X8gNucD2https://nvd.nist.gov/vuln/detail/CVE-2024-20353

Quick Facts

Published
2024-04-24
Last Modified
2024-04-27
Vendor
Cisco
CWE
CWE-835
Exploit
⚠️ Public Exploit Exists

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

View on NVD← Back to Advisory Feed