High severity7.7NVD Advisory· Published Mar 4, 2026· Updated Apr 16, 2026
CVE-2026-20014
CVE-2026-20014
Description
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an authenticated, remote attacker with valid VPN user credentials to cause a DoS condition on an affected device that may also impact the availability of services to devices elsewhere in the network. This vulnerability is due to the improper processing of IKEv2 packets. An attacker could exploit this vulnerability by sending crafted, authenticated IKEv2 packets to an affected device. A successful exploit could allow the attacker to exhaust memory, causing the device to reload.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:*Range: >=6.4.0,<7.0.9
- cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*Range: >=9.12.1,<9.16.4.85
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.