CVE-2026-20082

Name of the Vulnerable Software and Affected Versions Cisco Secure Firewall Adaptive Security Appliance (ASA) Software (affected versions not specified)

Description A flaw exists in how the software manages initial TCP connections under a TCP SYN flood attack. This could allow a remote, unauthenticated attacker to disrupt incoming TCP connections, including remote management access and Remote Access VPN (RAVPN) connections, leading to a denial of service (DoS) condition. The issue is due to improper handling of new, incoming TCP connections destined for management or data interfaces during a TCP SYN flood. An attacker could exploit this by sending a crafted stream of traffic to the device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.