CVE-2021-34783

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in the software-based SSL/TLS message handler could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. This issue is due to insufficient validation of SSL/TLS messages when the device performs software-based SSL/TLS decryption. An attacker could exploit this by sending a crafted SSL/TLS message to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Note that Datagram TLS (DTLS) messages cannot be used to exploit this vulnerability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.