CVE-2020-3305

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software (affected versions not specified) Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in the implementation of the Border Gateway Protocol (BGP) module could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The issue is due to incorrect processing of certain BGP packets. An attacker could exploit this by sending a crafted BGP packet, potentially causing a DoS condition on the affected device.

Recommendations For Cisco Adaptive Security Appliance (ASA) Software, consider disabling the BGP module until a patch is available. For Cisco Firepower Threat Defense (FTD) Software, restrict access to the BGP module to minimize the risk of exploitation. As a temporary workaround, avoid using the BGP protocol in the affected devices until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.