CVE-2025-20133

Name of the Vulnerable Software and Affected Versions: Cisco Secure Firewall ASA Software and Secure FTD Software (affected versions not specified)

Description: A vulnerability in the management and VPN web servers of the Remote Access SSL VPN feature could allow an unauthenticated, remote attacker to cause the device to unexpectedly stop responding, resulting in a Denial-of-Service (DoS) condition. This issue is due to ineffective validation of user-supplied input during the Remote Access SSL VPN authentication process. An attacker could exploit this by sending a crafted request to the VPN service on an affected device, causing a DoS condition where the device stops responding to Remote Access SSL VPN authentication requests.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.