CVE-2020-3306

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software (affected versions not specified) Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in the DHCP module could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. The issue is due to incorrect processing of certain DHCP packets. An attacker could exploit this by sending a crafted DHCP packet to the affected device, potentially causing a DoS condition.

Recommendations For Cisco Adaptive Security Appliance (ASA) Software, consider disabling the DHCP module until a patch is available. For Cisco Firepower Threat Defense (FTD) Software, restrict access to the DHCP module to minimize the risk of exploitation. As a temporary workaround, avoid using the DHCP module in the affected software until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.