CVE-2025-20243

Name of the Vulnerable Software and Affected Versions: Cisco Secure Firewall ASA Software and Secure FTD Software (affected versions not specified)

Description: A vulnerability exists in the management and VPN web servers that could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial-of-service (DoS) condition. This issue is due to improper validation of user-supplied input on an interface with VPN web services. An attacker could exploit this by sending crafted HTTP requests to a targeted web server on an affected device.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.