fkie_nvd - fkie_cve-2025-20252

fkie_cve-2025-20252

Vulnerability from fkie_nvd

Published

2025-08-14 17:15

Modified

2025-08-15 13:12

Severity ?

5.8 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Summary

A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a memory leak, resulting in a denial of service (DoS) condition. This vulnerability is due to improper parsing of IKEv2 packets. An attacker could exploit this vulnerability by sending a continuous stream of crafted IKEv2 packets to an affected device. A successful exploit could allow the attacker to partially exhaust system memory, causing system instability like being unable to establish new IKEv2 VPN sessions. A manual reboot of the device is required to recover from this condition.

References

▶	URL	Tags
	psirt@cisco.com	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ftd-ios-dos-DOESHWHy

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a memory leak, resulting in a denial of service (DoS) condition.\r\n\r This vulnerability is due to improper parsing of IKEv2 packets. An attacker could exploit this vulnerability by sending a continuous stream of crafted IKEv2 packets to an affected device. A successful exploit could allow the attacker to partially exhaust system memory, causing system instability like being unable to establish new IKEv2 VPN sessions. A manual reboot of the device is required to recover from this condition."
    }
  ],
  "id": "CVE-2025-20252",
  "lastModified": "2025-08-15T13:12:51.217",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 5.8,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4,
        "source": "psirt@cisco.com",
        "type": "Primary"
      }
    ]
  },
  "published": "2025-08-14T17:15:38.767",
  "references": [
    {
      "source": "psirt@cisco.com",
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ftd-ios-dos-DOESHWHy"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-401"
        }
      ],
      "source": "psirt@cisco.com",
      "type": "Primary"
    }
  ]
}

CVE-2025-20252 (GCVE-0-2025-20252)

Vulnerability from cvelistv5

Published

2025-08-14 16:29

Modified

2025-08-14 19:19

Severity ?

5.8 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

CWE

CWE-401 - Missing Release of Memory after Effective Lifetime

Summary

References

►

URL

Tags

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ftd-ios-dos-DOESHWHy

Impacted products

Vendor

Product

Version

►

Cisco

Cisco Adaptive Security Appliance (ASA) Software

Version: 9.8.4.15
Version: 9.8.4.17
Version: 9.8.4.25
Version: 9.8.4.20
Version: 9.8.4.22
Version: 9.8.4.26
Version: 9.8.4.29
Version: 9.8.4.32
Version: 9.8.4.33
Version: 9.8.4.34
Version: 9.8.4.35
Version: 9.8.4.39
Version: 9.8.4.40
Version: 9.8.4.41
Version: 9.8.4.43
Version: 9.8.4.44
Version: 9.8.4.45
Version: 9.8.4.46
Version: 9.8.4.48
Version: 9.12.3.2
Version: 9.12.3.7
Version: 9.12.4
Version: 9.12.3.12
Version: 9.12.3.9
Version: 9.12.4.2
Version: 9.12.4.4
Version: 9.12.4.7
Version: 9.12.4.10
Version: 9.12.4.13
Version: 9.12.4.8
Version: 9.12.4.18
Version: 9.12.4.24
Version: 9.12.4.26
Version: 9.12.4.29
Version: 9.12.4.30
Version: 9.12.4.35
Version: 9.12.4.37
Version: 9.12.4.38
Version: 9.12.4.39
Version: 9.12.4.40
Version: 9.12.4.41
Version: 9.12.4.47
Version: 9.12.4.48
Version: 9.12.4.50
Version: 9.12.4.52
Version: 9.12.4.54
Version: 9.12.4.55
Version: 9.12.4.56
Version: 9.12.4.58
Version: 9.12.4.62
Version: 9.12.4.65
Version: 9.12.4.67
Version: 9.14.1
Version: 9.14.1.10
Version: 9.14.1.6
Version: 9.14.1.15
Version: 9.14.1.19
Version: 9.14.1.30
Version: 9.14.2
Version: 9.14.2.4
Version: 9.14.2.8
Version: 9.14.2.13
Version: 9.14.2.15
Version: 9.14.3
Version: 9.14.3.1
Version: 9.14.3.9
Version: 9.14.3.11
Version: 9.14.3.13
Version: 9.14.3.18
Version: 9.14.3.15
Version: 9.14.4
Version: 9.14.4.6
Version: 9.14.4.7
Version: 9.14.4.12
Version: 9.14.4.13
Version: 9.14.4.14
Version: 9.14.4.15
Version: 9.14.4.17
Version: 9.14.4.22
Version: 9.14.4.23
Version: 9.14.4.24
Version: 9.16.1
Version: 9.16.1.28
Version: 9.16.2
Version: 9.16.2.3
Version: 9.16.2.7
Version: 9.16.2.11
Version: 9.16.2.13
Version: 9.16.2.14
Version: 9.16.3
Version: 9.16.3.3
Version: 9.16.3.14
Version: 9.16.3.15
Version: 9.16.3.19
Version: 9.16.3.23
Version: 9.16.4
Version: 9.16.4.9
Version: 9.16.4.14
Version: 9.16.4.18
Version: 9.16.4.19
Version: 9.16.4.27
Version: 9.16.4.38
Version: 9.16.4.39
Version: 9.16.4.42
Version: 9.16.4.48
Version: 9.16.4.55
Version: 9.16.4.57
Version: 9.16.4.61
Version: 9.16.4.62
Version: 9.16.4.67
Version: 9.16.4.70
Version: 9.16.4.71
Version: 9.16.4.76
Version: 9.16.4.82
Version: 9.17.1
Version: 9.17.1.7
Version: 9.17.1.9
Version: 9.17.1.10
Version: 9.17.1.11
Version: 9.17.1.13
Version: 9.17.1.15
Version: 9.17.1.20
Version: 9.17.1.30
Version: 9.17.1.33
Version: 9.17.1.39
Version: 9.17.1.45
Version: 9.17.1.46
Version: 9.18.1
Version: 9.18.1.3
Version: 9.18.2
Version: 9.18.2.5
Version: 9.18.2.7
Version: 9.18.2.8
Version: 9.18.3
Version: 9.18.3.39
Version: 9.18.3.46
Version: 9.18.3.53
Version: 9.18.3.55
Version: 9.18.3.56
Version: 9.18.4
Version: 9.18.4.5
Version: 9.18.4.8
Version: 9.18.4.22
Version: 9.18.4.24
Version: 9.18.4.29
Version: 9.18.4.34
Version: 9.18.4.40
Version: 9.18.4.47
Version: 9.18.4.50
Version: 9.18.4.52
Version: 9.18.4.53
Version: 9.19.1
Version: 9.19.1.5
Version: 9.19.1.9
Version: 9.19.1.12
Version: 9.19.1.18
Version: 9.19.1.22
Version: 9.19.1.24
Version: 9.19.1.27
Version: 9.19.1.28
Version: 9.19.1.31
Version: 9.19.1.37
Version: 9.19.1.38
Version: 9.20.1
Version: 9.20.1.5
Version: 9.20.2
Version: 9.20.2.10
Version: 9.20.2.21
Version: 9.20.2.22
Version: 9.20.3
Version: 9.20.3.4
Version: 9.20.3.7
Version: 9.20.3.9
Version: 9.20.3.10
Version: 9.20.3.13
Version: 9.22.1.1
Version: 9.22.1.3
Version: 9.22.1.2
Version: 9.22.1.6
Version: 9.23.1

Cisco

Cisco Firepower Threat Defense Software

Version: 6.2.3.16
Version: 6.2.3.17
Version: 6.2.3.18
Version: 6.6.0
Version: 6.6.0.1
Version: 6.6.1
Version: 6.6.3
Version: 6.6.4
Version: 6.6.5
Version: 6.6.5.1
Version: 6.6.5.2
Version: 6.6.7
Version: 6.6.7.1
Version: 6.6.7.2
Version: 6.4.0.9
Version: 6.4.0.10
Version: 6.4.0.11
Version: 6.4.0.12
Version: 6.4.0.13
Version: 6.4.0.14
Version: 6.4.0.15
Version: 6.4.0.16
Version: 6.4.0.17
Version: 6.4.0.18
Version: 7.0.0
Version: 7.0.0.1
Version: 7.0.1
Version: 7.0.1.1
Version: 7.0.2
Version: 7.0.2.1
Version: 7.0.3
Version: 7.0.4
Version: 7.0.5
Version: 7.0.6
Version: 7.0.6.1
Version: 7.0.6.2
Version: 7.0.6.3
Version: 7.0.7
Version: 7.1.0
Version: 7.1.0.1
Version: 7.1.0.2
Version: 7.1.0.3
Version: 7.2.0
Version: 7.2.0.1
Version: 7.2.1
Version: 7.2.2
Version: 7.2.3
Version: 7.2.4
Version: 7.2.4.1
Version: 7.2.5
Version: 7.2.5.1
Version: 7.2.6
Version: 7.2.7
Version: 7.2.5.2
Version: 7.2.8
Version: 7.2.8.1
Version: 7.2.9
Version: 7.3.0
Version: 7.3.1
Version: 7.3.1.1
Version: 7.3.1.2
Version: 7.4.0
Version: 7.4.1
Version: 7.4.1.1
Version: 7.4.2
Version: 7.4.2.1
Version: 7.4.2.2
Version: 7.6.0
Version: 7.7.0

Show details on NVD website