Cisco: Several Vulnerabilities in ASA, Firepower and FTD Software 10/2024
2024-11-04
On 28 October 2024, Cisco published a large number of vulnerabilities for the Cisco Adaptive Security Appliance (ASA), Cisco Firepower and Cisco Firepower Threat Defense (FTD) software:
According to the BSI’s warnings, the vulnerabilities can be grouped as follows:
Product | Vulnerabilities |
|---|---|
ASA | CVE-2024-20329, CVE-2024-20526 |
FTD | CVE-2024-20431 CVE-2024-20412 CVE-2024-20339 |
Firepower & ASA | CVE-2024-20297 CVE-2024-20299 CVE-2024-20384 CVE-2024-20260 CVE-2024-20268 CVE-2024-20331 CVE-2024-20402 CVE-2024-20408 CVE-2024-20426 CVE-2024-20481 CVE-2024-20493 CVE-2024-20494 CVE-2024-20495 CVE-2024-20485 CVE-2024-20370 CVE-2024-20341 CVE-2024-20382 |
Cisco summarizes further information on all vulnerabilities on the following page: https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-75300
The vulnerabilities listed there can generally only be exploited in a VIVAVIS control system environment by an attacker from inside. However, they should be closed by installing suitable patches.
If you have further questions on this matter or if you require support, please contact our Customer Support.
Peter Schwark
RSS-Feed
Our RSS feed always keeps you up to date! This way, you’ll receive same-day notification when a new article has been posted to the IT Security Bulletin. Just enter the following link in your feed reader: https://www.vivavis.com/en/category/it-security-en/feed/
You can find out how to integrate the RSS feed into Outlook here.
