CVE-2026-20025

Name of the Vulnerable Software and Affected Versions Cisco Secure Firewall ASA Software and Cisco Secure FTD Software (affected versions not specified)

Description A flaw exists in the OSPF protocol that may allow an authenticated, adjacent attacker to cause an unexpected reload of the device, leading to a denial-of-service (DoS) condition. The issue stems from inadequate input validation when handling OSPF link-state update (LSU) packets. An attacker could exploit this by sending specially crafted OSPF LSU packets, potentially corrupting the heap and triggering the DoS. To successfully exploit this, the attacker must possess the OSPF secret key.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.