.webp)
A vulnerability in Cisco Adaptive Security Appliance (ASA) software and Cisco Firepower Threat Defense (FTD) software, categorized as CVE-2024-20353 (CVSSv3: 8.6), results in a denial-of-service condition when exploited, allowing an unauthenticated, remote attacker to cause the device to reload unexpectedly. According to Cisco, this vulnerability is due to incomplete error checking when parsing an HTTP header. It is exploited by sending a specifically crafted HTTP request to a targeted web server. CISA has added this to their Known Exploited Vulnerabilities Catalog, adding to the urgency to remediate.
This vulnerability allows a remote, unauthenticated attacker to perform an exploit to cause a denial-of-service condition on the affected device. Evidence of exploitation has been confirmed by Cisco.
According to Cisco, to determine whether a device that is running Cisco ASA or FTD is affected, use the “show asp table socket | include SSL” command and look for an SSL listen socket on any port.
Please see the Cisco Software Checker to determine the version to which you are required to update.
The following resources from Cisco will assist in determining your best choice:
If you are a user of Cisco ASA or Cisco FTD software, you are advised to review their security advisory, utilize the Cisco Software Checker to see if you are vulnerable, and perform updates if applicable.
Exploitation of this vulnerability allows for a denial-of-service condition to be applied to VPN servers for the ASA and FTD software it could be crippling to the business. VPN connections are crucial for providing a secure connection to internal organizational resources, if a user is unable to connect to this VPN service, they will not be able to perform business operations.
Patch: We recommend patching the following software as soon as possible, exploitation would be detrimental to the organization’s bottom line, and there is evidence of active exploitation, raising the risk level.
https://nvd.nist.gov/vuln/detail/CVE-2024-20353
On this episode of the CyberWatch podcast, there are updates to software across the application and OS spectrum. New malicious campaigns are threatening victims of all sizes, and researchers have performed dissections on malware to give defenders new clues about just what it is they're fighting. All this today, in CyberWatch.
As we conclude our 'ransomware readiness week' of this Cybersecurity Awareness Month, it's time to take a critical look at your organization's defenses. Ransomware attacks are becoming more sophisticated, and no business is immune. In our latest article, we explore essential strategies to bolster your ransomware preparedness. Don't miss this vital information to help protect your business from emerging threats.
Ethical hacking has become an essential response to an IT industry kept on its toes by a spectrum of bad actors with malicious intent. This article introduces two prominent methodologies that help the good guys fight back: penetration testing (pen-testing) and red teaming. Learn more here.
Host Geoff Hancock was joined by guests Mike Rush, Director of Threat Intelligence at Access Point Consulting; and Evie Manning, Senior Director of Threat Hunting and Intelligence at Access Point Consulting. Together, they talked about cyber threat intelligence and the applications that can make it work for small and medium-sized businesses.
