CVE-2026-20101

A vulnerability in the SAML 2.0 single sign-on (SSO) feature of Cisco Secure Firewall ASA Software and Secure FTD Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerability is due to insufficient error checking when processing SAML messages. An attacker could exploit this vulnerability by sending crafted SAML messages to the SAML service. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

CVSS v3 8.6 HIGH

8.6^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 4.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-vpn-m9sx6MbC	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:cisco:adaptive_security_appliance_software::::::::
	cpe:2.3:o:cisco:adaptive_security_appliance_software::::::::
	cpe:2.3:o:cisco:adaptive_security_appliance_software::::::::
	cpe:2.3:o:cisco:adaptive_security_appliance_software::::::::
	cpe:2.3:o:cisco:adaptive_security_appliance_software::::::::

Configuration 2 (hide)

OR	cpe:2.3:a:cisco:firepower_threat_defense_software::::::::
	cpe:2.3:a:cisco:firepower_threat_defense_software::::::::
	cpe:2.3:a:cisco:firepower_threat_defense_software::::::::
	cpe:2.3:a:cisco:firepower_threat_defense_software::::::::
	cpe:2.3:a:cisco:firepower_threat_defense_software::::::::

History

16 Apr 2026, 20:28

Type	Values Removed	Values Added
References	~~() https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-vpn-m9sx6MbC -~~	() https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-vpn-m9sx6MbC - Vendor Advisory
Summary		(es) Una vulnerabilidad en la función de inicio de sesión único (SSO) SAML 2.0 de Cisco Secure Firewall ASA Software y Secure FTD Software podría permitir a un atacante remoto no autenticado provocar que el dispositivo se recargue inesperadamente, lo que resultaría en una condición de DoS. Esta vulnerabilidad se debe a una comprobación de errores insuficiente al procesar mensajes SAML. Un atacante podría explotar esta vulnerabilidad enviando mensajes SAML manipulados al servicio SAML. Un exploit exitoso podría permitir al atacante provocar que el dispositivo se recargue, lo que resultaría en una condición de DoS.
First Time		Cisco firepower Threat Defense Software Cisco Cisco adaptive Security Appliance Software
CPE		cpe:2.3:a:cisco:firepower_threat_defense_software:::::::: cpe:2.3:o:cisco:adaptive_security_appliance_software::::::::

04 Mar 2026, 18:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-03-04 18:16

Updated : 2026-04-16 20:28

NVD link : CVE-2026-20101

Mitre link : CVE-2026-20101

CVE.ORG link : CVE-2026-20101

JSON object : View

Products Affected

cisco

firepower_threat_defense_software
adaptive_security_appliance_software

CWE

CWE-330

Use of Insufficiently Random Values

8.6 /10