CVE-2023-20247

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software (affected versions not specified) Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in the remote access SSL VPN feature could allow an authenticated, remote attacker to bypass a configured multiple certificate authentication policy and connect using only a valid username and password. This is due to improper error handling during remote access VPN authentication. An attacker could exploit this by sending crafted requests during remote access VPN session establishment, potentially allowing them to bypass the configured multiple certificate authentication policy while retaining the privileges and permissions associated with the original connection profile.

Recommendations For Cisco Adaptive Security Appliance (ASA) Software, update to a version that includes the fix for this issue. For Cisco Firepower Threat Defense (FTD) Software, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the remote access SSL VPN feature until a patch is available. Restrict access to the VPN connection profile to minimize the risk of exploitation.