CVE-2024-20384

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance (ASA) Software (affected versions not specified) Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description: A logic error in the Network Service Group (NSG) feature could allow an unauthenticated, remote attacker to bypass a configured access control list (ACL) and allow traffic that should be denied to flow through an affected device. This issue occurs when NSG ACLs are populated on an affected device. An attacker could exploit this by establishing a connection to the affected device, potentially bypassing configured ACL rules.

Recommendations: For Cisco Adaptive Security Appliance (ASA) Software, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Cisco Firepower Threat Defense (FTD) Software, at the moment, there is no information about a newer version that contains a fix for this vulnerability.