CVE-2026-20105

Name of the Vulnerable Software and Affected Versions Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Threat Defense (FTD) Software (affected versions not specified)

Description A flaw exists in the Remote Access SSL VPN functionality that may allow a remote attacker with a valid VPN connection to deplete device memory, leading to a denial of service (DoS) condition. The issue stems from a lack of input validation, enabling an attacker to exploit the system by transmitting specially crafted packets to the Remote Access SSL VPN server. A successful exploit could force the device to reload, resulting in a DoS condition. This does not impact the management or MUS interfaces.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.