CVE-2024-20485

A vulnerability in the VPN web server of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary code with root-level privileges. Administrator-level privileges are required to exploit this vulnerability.

 This vulnerability is due to improper validation of a specific file when it is read from system flash memory. An attacker could exploit this vulnerability by restoring a crafted backup file to an affected device. A successful exploit could allow the attacker to execute arbitrary code on the affected device after the next reload of the device, which could alter system behavior. Because the injected code could persist across device reboots, Cisco has raised the Security Impact Rating (SIR) of this advisory from Medium to High.
Code Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
ciscoCNA
6 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 6%
VendorProductVersion
ciscoadaptive_security_appliance_software
9.8.1
ciscoadaptive_security_appliance_software
9.8.1.5
ciscoadaptive_security_appliance_software
9.8.1.7
ciscoadaptive_security_appliance_software
9.8.2
ciscoadaptive_security_appliance_software
9.8.2.8
ciscoadaptive_security_appliance_software
9.8.2.14
ciscoadaptive_security_appliance_software
9.8.2.15
ciscoadaptive_security_appliance_software
9.8.2.17
ciscoadaptive_security_appliance_software
9.8.2.20
ciscoadaptive_security_appliance_software
9.8.2.24
ciscoadaptive_security_appliance_software
9.8.2.26
ciscoadaptive_security_appliance_software
9.8.2.28
ciscoadaptive_security_appliance_software
9.8.2.33
ciscoadaptive_security_appliance_software
9.8.2.35
ciscoadaptive_security_appliance_software
9.8.2.38
ciscoadaptive_security_appliance_software
9.8.2.45
ciscoadaptive_security_appliance_software
9.8.3
ciscoadaptive_security_appliance_software
9.8.3.8
ciscoadaptive_security_appliance_software
9.8.3.11
ciscoadaptive_security_appliance_software
9.8.3.14
ciscoadaptive_security_appliance_software
9.8.3.16
ciscoadaptive_security_appliance_software
9.8.3.18
ciscoadaptive_security_appliance_software
9.8.3.21
ciscoadaptive_security_appliance_software
9.8.3.26
ciscoadaptive_security_appliance_software
9.8.3.29
ciscoadaptive_security_appliance_software
9.8.4
ciscoadaptive_security_appliance_software
9.8.4.3
ciscoadaptive_security_appliance_software
9.8.4.7
ciscoadaptive_security_appliance_software
9.8.4.8
ciscoadaptive_security_appliance_software
9.8.4.10
ciscoadaptive_security_appliance_software
9.8.4.12
ciscoadaptive_security_appliance_software
9.8.4.15
ciscoadaptive_security_appliance_software
9.8.4.17
ciscoadaptive_security_appliance_software
9.8.4.20
ciscoadaptive_security_appliance_software
9.8.4.22
ciscoadaptive_security_appliance_software
9.8.4.25
ciscoadaptive_security_appliance_software
9.8.4.26
ciscoadaptive_security_appliance_software
9.8.4.29
ciscoadaptive_security_appliance_software
9.8.4.32
ciscoadaptive_security_appliance_software
9.8.4.33
ciscoadaptive_security_appliance_software
9.8.4.34
ciscoadaptive_security_appliance_software
9.8.4.35
ciscoadaptive_security_appliance_software
9.8.4.39
ciscoadaptive_security_appliance_software
9.8.4.40
ciscoadaptive_security_appliance_software
9.8.4.41
ciscoadaptive_security_appliance_software
9.8.4.43
ciscoadaptive_security_appliance_software
9.8.4.44
ciscoadaptive_security_appliance_software
9.8.4.45
ciscoadaptive_security_appliance_software
9.8.4.46
ciscoadaptive_security_appliance_software
9.8.4.48
ciscoadaptive_security_appliance_software
9.12.1
ciscoadaptive_security_appliance_software
9.12.1.2
ciscoadaptive_security_appliance_software
9.12.1.3
ciscoadaptive_security_appliance_software
9.12.2
ciscoadaptive_security_appliance_software
9.12.2.1
ciscoadaptive_security_appliance_software
9.12.2.4
ciscoadaptive_security_appliance_software
9.12.2.5
ciscoadaptive_security_appliance_software
9.12.2.9
ciscoadaptive_security_appliance_software
9.12.3
ciscoadaptive_security_appliance_software
9.12.3.2
ciscoadaptive_security_appliance_software
9.12.3.7
ciscoadaptive_security_appliance_software
9.12.3.9
ciscoadaptive_security_appliance_software
9.12.3.12
ciscoadaptive_security_appliance_software
9.12.4
ciscoadaptive_security_appliance_software
9.12.4.2
ciscoadaptive_security_appliance_software
9.12.4.4
ciscoadaptive_security_appliance_software
9.12.4.7
ciscoadaptive_security_appliance_software
9.12.4.8
ciscoadaptive_security_appliance_software
9.12.4.10
ciscoadaptive_security_appliance_software
9.12.4.13
ciscoadaptive_security_appliance_software
9.12.4.18
ciscoadaptive_security_appliance_software
9.12.4.24
ciscoadaptive_security_appliance_software
9.12.4.26
ciscoadaptive_security_appliance_software
9.12.4.29
ciscoadaptive_security_appliance_software
9.12.4.30
ciscoadaptive_security_appliance_software
9.12.4.35
ciscoadaptive_security_appliance_software
9.12.4.37
ciscoadaptive_security_appliance_software
9.12.4.38
ciscoadaptive_security_appliance_software
9.12.4.39
ciscoadaptive_security_appliance_software
9.12.4.40
ciscoadaptive_security_appliance_software
9.12.4.41
ciscoadaptive_security_appliance_software
9.12.4.47
ciscoadaptive_security_appliance_software
9.12.4.48
ciscoadaptive_security_appliance_software
9.12.4.50
ciscoadaptive_security_appliance_software
9.12.4.52
ciscoadaptive_security_appliance_software
9.12.4.54
ciscoadaptive_security_appliance_software
9.12.4.55
ciscoadaptive_security_appliance_software
9.12.4.56
ciscoadaptive_security_appliance_software
9.12.4.58
ciscoadaptive_security_appliance_software
9.12.4.62
ciscoadaptive_security_appliance_software
9.12.4.65
ciscoadaptive_security_appliance_software
9.12.4.67
ciscoadaptive_security_appliance_software
9.14.1
ciscoadaptive_security_appliance_software
9.14.1.6
ciscoadaptive_security_appliance_software
9.14.1.10
ciscoadaptive_security_appliance_software
9.14.1.15
ciscoadaptive_security_appliance_software
9.14.1.19
ciscoadaptive_security_appliance_software
9.14.1.30
ciscoadaptive_security_appliance_software
9.14.2
ciscoadaptive_security_appliance_software
9.14.2.4
ciscoadaptive_security_appliance_software
9.14.2.8
ciscoadaptive_security_appliance_software
9.14.2.13
ciscoadaptive_security_appliance_software
9.14.2.15
ciscoadaptive_security_appliance_software
9.14.3
ciscoadaptive_security_appliance_software
9.14.3.1
ciscoadaptive_security_appliance_software
9.14.3.9
ciscoadaptive_security_appliance_software
9.14.3.11
ciscoadaptive_security_appliance_software
9.14.3.13
ciscoadaptive_security_appliance_software
9.14.3.15
ciscoadaptive_security_appliance_software
9.14.3.18
ciscoadaptive_security_appliance_software
9.14.4
ciscoadaptive_security_appliance_software
9.14.4.6
ciscoadaptive_security_appliance_software
9.14.4.7
ciscoadaptive_security_appliance_software
9.14.4.12
ciscoadaptive_security_appliance_software
9.14.4.13
ciscoadaptive_security_appliance_software
9.14.4.14
ciscoadaptive_security_appliance_software
9.14.4.15
ciscoadaptive_security_appliance_software
9.14.4.17
ciscoadaptive_security_appliance_software
9.14.4.22
ciscoadaptive_security_appliance_software
9.14.4.23
ciscoadaptive_security_appliance_software
9.14.4.24
ciscoadaptive_security_appliance_software
9.15.1
ciscoadaptive_security_appliance_software
9.15.1.1
ciscoadaptive_security_appliance_software
9.15.1.7
ciscoadaptive_security_appliance_software
9.15.1.10
ciscoadaptive_security_appliance_software
9.15.1.15
ciscoadaptive_security_appliance_software
9.15.1.16
ciscoadaptive_security_appliance_software
9.15.1.17
ciscoadaptive_security_appliance_software
9.15.1.21
ciscoadaptive_security_appliance_software
9.16.1
ciscoadaptive_security_appliance_software
9.16.1.28
ciscoadaptive_security_appliance_software
9.16.2
ciscoadaptive_security_appliance_software
9.16.2.3
ciscoadaptive_security_appliance_software
9.16.2.7
ciscoadaptive_security_appliance_software
9.16.2.11
ciscoadaptive_security_appliance_software
9.16.2.13
ciscoadaptive_security_appliance_software
9.16.2.14
ciscoadaptive_security_appliance_software
9.16.3
ciscoadaptive_security_appliance_software
9.16.3.3
ciscoadaptive_security_appliance_software
9.16.3.14
ciscoadaptive_security_appliance_software
9.16.3.15
ciscoadaptive_security_appliance_software
9.16.3.19
ciscoadaptive_security_appliance_software
9.16.3.23
ciscoadaptive_security_appliance_software
9.16.4
ciscoadaptive_security_appliance_software
9.16.4.9
ciscoadaptive_security_appliance_software
9.16.4.14
ciscoadaptive_security_appliance_software
9.16.4.18
ciscoadaptive_security_appliance_software
9.16.4.19
ciscoadaptive_security_appliance_software
9.16.4.27
ciscoadaptive_security_appliance_software
9.16.4.38
ciscoadaptive_security_appliance_software
9.16.4.39
ciscoadaptive_security_appliance_software
9.16.4.42
ciscoadaptive_security_appliance_software
9.16.4.48
ciscoadaptive_security_appliance_software
9.16.4.55
ciscoadaptive_security_appliance_software
9.16.4.57
ciscoadaptive_security_appliance_software
9.17.1
ciscoadaptive_security_appliance_software
9.17.1.7
ciscoadaptive_security_appliance_software
9.17.1.9
ciscoadaptive_security_appliance_software
9.17.1.10
ciscoadaptive_security_appliance_software
9.17.1.11
ciscoadaptive_security_appliance_software
9.17.1.13
ciscoadaptive_security_appliance_software
9.17.1.15
ciscoadaptive_security_appliance_software
9.17.1.20
ciscoadaptive_security_appliance_software
9.17.1.30
ciscoadaptive_security_appliance_software
9.17.1.33
ciscoadaptive_security_appliance_software
9.17.1.39
ciscoadaptive_security_appliance_software
9.18.1
ciscoadaptive_security_appliance_software
9.18.1.3
ciscoadaptive_security_appliance_software
9.18.2
ciscoadaptive_security_appliance_software
9.18.2.5
ciscoadaptive_security_appliance_software
9.18.2.7
ciscoadaptive_security_appliance_software
9.18.2.8
ciscoadaptive_security_appliance_software
9.18.3
ciscoadaptive_security_appliance_software
9.18.3.39
ciscoadaptive_security_appliance_software
9.18.3.46
ciscoadaptive_security_appliance_software
9.18.3.53
ciscoadaptive_security_appliance_software
9.18.3.55
ciscoadaptive_security_appliance_software
9.18.3.56
ciscoadaptive_security_appliance_software
9.18.4
ciscoadaptive_security_appliance_software
9.18.4.5
ciscoadaptive_security_appliance_software
9.18.4.8
ciscoadaptive_security_appliance_software
9.18.4.22
ciscoadaptive_security_appliance_software
9.19.1
ciscoadaptive_security_appliance_software
9.19.1.5
ciscoadaptive_security_appliance_software
9.19.1.9
ciscoadaptive_security_appliance_software
9.19.1.12
ciscoadaptive_security_appliance_software
9.19.1.18
ciscoadaptive_security_appliance_software
9.19.1.22
ciscoadaptive_security_appliance_software
9.19.1.24
ciscoadaptive_security_appliance_software
9.19.1.27
ciscoadaptive_security_appliance_software
9.20.1
ciscoadaptive_security_appliance_software
9.20.1.5
ciscoadaptive_security_appliance_software
9.20.2
ciscoadaptive_security_appliance_software
9.20.2.10
ciscofirepower_threat_defense_software
6.2.3
ciscofirepower_threat_defense_software
6.2.3.1
ciscofirepower_threat_defense_software
6.2.3.2
ciscofirepower_threat_defense_software
6.2.3.3
ciscofirepower_threat_defense_software
6.2.3.4
ciscofirepower_threat_defense_software
6.2.3.5
ciscofirepower_threat_defense_software
6.2.3.6
ciscofirepower_threat_defense_software
6.2.3.7
ciscofirepower_threat_defense_software
6.2.3.8
ciscofirepower_threat_defense_software
6.2.3.9
ciscofirepower_threat_defense_software
6.2.3.10
ciscofirepower_threat_defense_software
6.2.3.11
ciscofirepower_threat_defense_software
6.2.3.12
ciscofirepower_threat_defense_software
6.2.3.13
ciscofirepower_threat_defense_software
6.2.3.14
ciscofirepower_threat_defense_software
6.2.3.15
ciscofirepower_threat_defense_software
6.2.3.16
ciscofirepower_threat_defense_software
6.2.3.17
ciscofirepower_threat_defense_software
6.2.3.18
ciscofirepower_threat_defense_software
6.4.0
ciscofirepower_threat_defense_software
6.4.0.1
ciscofirepower_threat_defense_software
6.4.0.2
ciscofirepower_threat_defense_software
6.4.0.3
ciscofirepower_threat_defense_software
6.4.0.4
ciscofirepower_threat_defense_software
6.4.0.5
ciscofirepower_threat_defense_software
6.4.0.6
ciscofirepower_threat_defense_software
6.4.0.7
ciscofirepower_threat_defense_software
6.4.0.8
ciscofirepower_threat_defense_software
6.4.0.9
ciscofirepower_threat_defense_software
6.4.0.10
ciscofirepower_threat_defense_software
6.4.0.11
ciscofirepower_threat_defense_software
6.4.0.12
ciscofirepower_threat_defense_software
6.4.0.13
ciscofirepower_threat_defense_software
6.4.0.14
ciscofirepower_threat_defense_software
6.4.0.15
ciscofirepower_threat_defense_software
6.4.0.16
ciscofirepower_threat_defense_software
6.4.0.17
ciscofirepower_threat_defense_software
6.4.0.18
ciscofirepower_threat_defense_software
6.6.0
ciscofirepower_threat_defense_software
6.6.0.1
ciscofirepower_threat_defense_software
6.6.1
ciscofirepower_threat_defense_software
6.6.3
ciscofirepower_threat_defense_software
6.6.4
ciscofirepower_threat_defense_software
6.6.5
ciscofirepower_threat_defense_software
6.6.5.1
ciscofirepower_threat_defense_software
6.6.5.2
ciscofirepower_threat_defense_software
6.6.7
ciscofirepower_threat_defense_software
6.6.7.1
ciscofirepower_threat_defense_software
6.6.7.2
ciscofirepower_threat_defense_software
6.7.0
ciscofirepower_threat_defense_software
6.7.0.1
ciscofirepower_threat_defense_software
6.7.0.2
ciscofirepower_threat_defense_software
6.7.0.3
ciscofirepower_threat_defense_software
7.0.0
ciscofirepower_threat_defense_software
7.0.0.1
ciscofirepower_threat_defense_software
7.0.1
ciscofirepower_threat_defense_software
7.0.1.1
ciscofirepower_threat_defense_software
7.0.2
ciscofirepower_threat_defense_software
7.0.2.1
ciscofirepower_threat_defense_software
7.0.3
ciscofirepower_threat_defense_software
7.0.4
ciscofirepower_threat_defense_software
7.0.5
ciscofirepower_threat_defense_software
7.0.6
ciscofirepower_threat_defense_software
7.0.6.1
ciscofirepower_threat_defense_software
7.0.6.2
ciscofirepower_threat_defense_software
7.1.0
ciscofirepower_threat_defense_software
7.1.0.1
ciscofirepower_threat_defense_software
7.1.0.2
ciscofirepower_threat_defense_software
7.1.0.3
ciscofirepower_threat_defense_software
7.2.0
ciscofirepower_threat_defense_software
7.2.0.1
ciscofirepower_threat_defense_software
7.2.1
ciscofirepower_threat_defense_software
7.2.2
ciscofirepower_threat_defense_software
7.2.3
ciscofirepower_threat_defense_software
7.2.4
ciscofirepower_threat_defense_software
7.2.4.1
ciscofirepower_threat_defense_software
7.2.5
ciscofirepower_threat_defense_software
7.2.5.1
ciscofirepower_threat_defense_software
7.2.5.2
ciscofirepower_threat_defense_software
7.2.6
ciscofirepower_threat_defense_software
7.2.7
ciscofirepower_threat_defense_software
7.2.8
ciscofirepower_threat_defense_software
7.2.8.1
ciscofirepower_threat_defense_software
7.3.0
ciscofirepower_threat_defense_software
7.3.1
ciscofirepower_threat_defense_software
7.3.1.1
ciscofirepower_threat_defense_software
7.3.1.2
ciscofirepower_threat_defense_software
7.4.0
ciscofirepower_threat_defense_software
7.4.1
ciscofirepower_threat_defense_software
7.4.1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-persist-lce-vU3ekMJ3