CVE-2026-20082 - Vulnerability Analysis
HighCVSS: 8.6Last Updated: March 4, 2026
Cisco Secure Firewall Adaptive Security Appliance - Denial of Service
Published: March 4, 2026Updated: March 4, 2026Remote Exploitable
Overview
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software contains a denial of service vulnerability caused by improper handling of embryonic TCP connections under SYN flood attack, letting unauthenticated remote attackers drop incoming TCP SYN packets, exploit requires sending crafted traffic.
Severity & Score
Severity: High
CVSS Score: 8.6
Impact
Attackers can cause denial of service by preventing all incoming TCP connections, including remote management and VPN access.
Mitigation
Update to the latest available version of Cisco Secure Firewall Adaptive Security Appliance Software.
Related Resources
Details
- CVE ID
- CVE-2026-20082
- Severity
- High
- CVSS Score
- 8.6
- Type
- denial_of_service
- Status
- new
CWE
- CWE-772
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H