Multiple Flaws Patched in Cisco Adaptive Security Appliance...

Question

Multiple Flaws Patched in Cisco Adaptive Security Appliance and Firepower Threat DefenseUpdate 05/09/20: Removed reference to Firepower Management Center (FMC) as Cisco has confirmed that FMC is not affected.Earlier this week, Cisco published 34 security advisories, including a bundled publication for 12 vulnerabilities rated as “High” in the Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)Outside of multiple denial of service flaws, the most notable vulnerability identified was CVE-2020-3187, a path traversal flaw in the web services of Cisco’s ASA and FTD software. This flaw only exists when the WebVPN or AnyConnect features are configured.For more information, including details on affected configurations and patch availability, please check out our blog.

cpierce1 · Answer

Cisco has confirmed that this vulnerability does not affect Cisco Firepower Management Center (FMC) Software.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-path-JE3azWw43

snarang · Answer

Hi @Charles Pierce​&nbsp;-- I've updated the blog post as well as the community post to reflect this. Thank you so much for the head up. :)

Vulnerability Watch

Forum Discussion

Multiple Flaws Patched in Cisco Adaptive Security Appliance...

2 Replies

Recent Discussions

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Vulnerability

Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)

CVE-2025-14847 (MongoBleed): MongoDB Memory Leak Vulnerability Exploited in the Wild

CVE-2025-40602: SonicWall Secure Mobile Access (SMA) 1000 Zero-Day Exploited

Microsoft Patch Tuesday 2025 Year in Review

Americas

Europe

Asia / Australia