CVE-2026-20101

Name of the Vulnerable Software and Affected Versions Cisco Secure Firewall ASA Software and Secure FTD Software (affected versions not specified)

Description A flaw exists in the SAML 2.0 single sign-on (SSO) feature that could allow a remote, unauthenticated attacker to cause the device to reload unexpectedly, leading to a denial-of-service (DoS) condition. This is due to insufficient error checking when processing SAML messages. An attacker could exploit this by sending crafted SAML messages to the SAML service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.