CVE-2020-3564

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software (affected versions not specified) Cisco Adaptive Security Appliance (ASA) Software (affected versions not specified)

Description The issue is related to inadequate access control in the FTP inspection mechanism of the affected software, allowing a remote attacker to gain unauthorized access to protected information by sending specially crafted FTP traffic. This is due to ineffective flow tracking of FTP traffic, which could enable an attacker to bypass FTP inspection and successfully complete FTP connections.

Recommendations For Cisco Firepower Threat Defense (FTD) Software, update to a version that includes the fix for this issue. For Cisco Adaptive Security Appliance (ASA) Software, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the FTP inspection engine until a patch is available.