CVE-2025-20244

Name of the Vulnerable Software and Affected Versions: Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software (affected versions not specified)

Description: A flaw exists in the Remote Access SSL VPN service that may allow a remote attacker with VPN access to trigger an unexpected device reload, leading to a denial of service (DoS) condition. The issue stems from insufficient error checking during the parsing of an HTTP header field value. An attacker can exploit this by sending a specially crafted HTTP request to the affected service.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.