CVE-2026-20050

Name of the Vulnerable Software and Affected Versions Cisco Secure Firewall Threat Defense (FTD) Software (affected versions not specified)

Description A flaw exists in the Do Not Decrypt exclusion feature of the SSL decryption functionality. This issue could allow a remote, unauthenticated attacker to trigger a denial of service (DoS) condition on a vulnerable device. The root cause is improper memory management when examining TLS 1.2 encrypted traffic. An attacker can exploit this by sending specifically crafted TLS 1.2 encrypted traffic to the device, potentially causing it to reload. This vulnerability only impacts traffic encrypted using TLS 1.2; other TLS versions are not affected.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.