all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

2x Actively Exploited Cisco CVEs in Adaptive Security Compliance (ASA) & Firepower Threat Defense (FTD)

Add to bookmarks
April 24, 2024, 6:56 p.m. | /u/blackpoint_APG

cybersecurity www.reddit.com

(That would be Adaptive Security ***Appliance***\*,\* of course...)

# What's Going On?

* **This afternoon, Cisco released 2 new CVEs** impacting their Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD), both of which are **actively exploited by UAT4356.**

# More on [CVE-2024-20353](https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-websrvs-dos-X8gNucD2)

* Vendor CVSS Score 8.6
* Allows an unauthenticated, remote attacker to force a compromised device to reload unexpectedly, resulting in a denial of service (DoS) condition.

# More on [CVE-2024-20359](https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-persist-rce-FLsNXF4h)

* Vendor CVSS Score 6.0
* …

actively exploited adaptive security asa cisco compliance course cves cvss cvss score cybersecurity defense exploited firepower score security security compliance threat threat defense vendor

Visit resource

More from www.reddit.com / cybersecurity

Embedded LUKS (E-LUKS): A Hardware Solution to IoT Security -- "The Internet of Things (IoT) … 7 hours ago | www.reddit.com
cybersecurity developers embedded framework +14
New Android security flaw lets hackers seize control of apps — uninstall these immediately | … 12 hours ago | www.reddit.com
android android security apps control +8
X 2FA Paywall 15 hours ago | www.reddit.com
2fa apps bad bad security +16
how did you break into cybersecurity 17 hours ago | www.reddit.com
cyber cyber security cybersecurity cybersecurity cyber +4
CIS Benchmarks - Intune vs GPO? 18 hours ago | www.reddit.com
benchmarks can cis cis benchmarks +6
How to lateral movement in Windows domain. 18 hours ago | www.reddit.com
advanced articles can certification +11
How to: Parsing AuditD Syslog in Microsoft Sentinel with a function and combining the events … 20 hours ago | www.reddit.com
article auditd cybersecurity detection +11
What do I need to start an ISO 27001 implementation project? 22 hours ago | www.reddit.com
certification cybersecurity don hello +10
What are the pros and cons of virtual patching? 23 hours ago | www.reddit.com
cons cybersecurity patching virtual +1

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Consultant Sécurité SI H/F Gouvernance - Risques - Conformité - Nantes

@ Hifield | Saint-Herblain, France
View on infosec-jobs.com

L2 Security - Senior Security Engineer

@ Paytm | Noida, Uttar Pradesh
View on infosec-jobs.com

GRC Integrity Program Manager

@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City
View on infosec-jobs.com

Consultant Active Directory H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Consultant PCI-DSS H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Head of Security Operations

@ Canonical Ltd. | Home based - Americas, EMEA
View on infosec-jobs.com
View more jobs