CVE-2026-20102

{"id": "CVE-2026-20102", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "psirt@cisco.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.8}]}, "published": "2026-03-04T18:16:25.620", "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-saml-LktTrwZP", "tags": ["Vendor Advisory"], "source": "psirt@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "psirt@cisco.com", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the SAML 2.0 single sign-on (SSO) feature of Cisco Secure Firewall ASA Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the SAML feature and access sensitive, browser-based information.\r\n\r\nThis vulnerability is due to insufficient input validation of multiple HTTP parameters. An attacker could exploit this vulnerability by persuading a user to access a malicious link. A successful exploit could allow the attacker to conduct a reflected XSS attack through an affected device."}, {"lang": "es", "value": "Una vulnerabilidad en la funci\u00f3n de inicio de sesi\u00f3n \u00fanico (SSO) SAML 2.0 de Cisco Secure Firewall ASA Software y Cisco Secure Firewall Threat Defense (FTD) Software podr\u00eda permitir a un atacante remoto no autenticado realizar un ataque de cross-site scripting (XSS) contra la funci\u00f3n SAML y acceder a informaci\u00f3n sensible basada en el navegador.\n\nEsta vulnerabilidad se debe a una validaci\u00f3n de entrada insuficiente de m\u00faltiples par\u00e1metros HTTP. Un atacante podr\u00eda explotar esta vulnerabilidad persuadiendo a un usuario para que acceda a un enlace malicioso. Un exploit exitoso podr\u00eda permitir al atacante realizar un ataque XSS reflejado a trav\u00e9s de un dispositivo afectado."}], "lastModified": "2026-04-16T20:28:09.097", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "607EC994-8748-4BD6-9FBA-9C629EEFE20E", "versionEndExcluding": "9.16.4.89", "versionStartIncluding": "9.16.1"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A8F5D95D-6E80-42D2-BF57-8B3B600D6B40", "versionEndExcluding": "9.18.4.71", "versionStartIncluding": "9.17.1"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EBAD7362-E8E2-4618-89CA-50E9B0102651", "versionEndExcluding": "9.20.4.19", "versionStartIncluding": "9.20.1"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "279FE4E6-C208-48E2-9B07-DCB121C59A08", "versionEndExcluding": "9.22.2.32", "versionStartIncluding": "9.22.1.1"}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "67082150-477F-4B2E-B880-069D05875DC3", "versionEndExcluding": "9.23.1.26", "versionStartIncluding": "9.23.1"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14522326-0EF6-455A-8C84-C84E8C6B3F29", "versionEndExcluding": "7.0.9", "versionStartIncluding": "7.0.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3DA98A98-A084-4DB0-B08F-33EB6C8607C0", "versionEndExcluding": "7.2.11", "versionStartIncluding": "7.1.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0943CCEB-1EA4-489B-9E62-631046B1A4AA", "versionEndExcluding": "7.4.3", "versionStartIncluding": "7.4.0"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B728650B-131B-43FD-A7F2-DAE8DAF781C6", "versionEndExcluding": "10.0.0", "versionStartIncluding": "7.6.0"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@cisco.com"}