CVE-2023-20086

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software (affected versions not specified) Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in ICMPv6 processing could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This is due to improper processing of ICMPv6 messages. An attacker could exploit this by sending crafted ICMPv6 messages to a targeted system with IPv6 enabled, potentially causing the device to reload.

Recommendations For Cisco Adaptive Security Appliance (ASA) Software, consider disabling IPv6 until a patch is available. For Cisco Firepower Threat Defense (FTD) Software, restrict access to ICMPv6 messages to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.