CVE-2026-20064

EUVD-2026-9483

04.03.2026, 19:16

A vulnerability in of Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, local attacker to cause the device to unexpectedly reload, causing a denial of service (DoS) condition.

 This vulnerability is due to improper validation of user-supplied input. An attacker with a low-privileged account could exploit this vulnerability by using crafted commands at the CLI prompt. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 10%

Affected Products (NVD)

Vendor	Product	Version
cisco	firepower_threat_defense_software	6.2.3
cisco	firepower_threat_defense_software	6.4.0
cisco	firepower_threat_defense_software	6.4.0.1
cisco	firepower_threat_defense_software	6.4.0.2
cisco	firepower_threat_defense_software	6.4.0.3
cisco	firepower_threat_defense_software	6.4.0.4
cisco	firepower_threat_defense_software	6.4.0.5
cisco	firepower_threat_defense_software	6.4.0.6
cisco	firepower_threat_defense_software	6.4.0.7
cisco	firepower_threat_defense_software	6.4.0.8
cisco	firepower_threat_defense_software	6.4.0.9
cisco	firepower_threat_defense_software	6.4.0.10
cisco	firepower_threat_defense_software	6.4.0.11
cisco	firepower_threat_defense_software	6.4.0.12
cisco	firepower_threat_defense_software	6.4.0.13
cisco	firepower_threat_defense_software	6.4.0.14
cisco	firepower_threat_defense_software	6.4.0.15
cisco	firepower_threat_defense_software	6.4.0.16
cisco	firepower_threat_defense_software	6.4.0.17
cisco	firepower_threat_defense_software	6.4.0.18
cisco	firepower_threat_defense_software	7.0.0
cisco	firepower_threat_defense_software	7.0.0.1
cisco	firepower_threat_defense_software	7.0.1
cisco	firepower_threat_defense_software	7.0.1.1
cisco	firepower_threat_defense_software	7.0.2
cisco	firepower_threat_defense_software	7.0.2.1
cisco	firepower_threat_defense_software	7.0.3
cisco	firepower_threat_defense_software	7.0.4
cisco	firepower_threat_defense_software	7.0.5
cisco	firepower_threat_defense_software	7.0.6
cisco	firepower_threat_defense_software	7.0.6.1
cisco	firepower_threat_defense_software	7.0.6.2
cisco	firepower_threat_defense_software	7.0.6.3
cisco	firepower_threat_defense_software	7.0.7
cisco	firepower_threat_defense_software	7.0.8
cisco	firepower_threat_defense_software	7.0.8.1
cisco	firepower_threat_defense_software	7.1.0
cisco	firepower_threat_defense_software	7.1.0.1
cisco	firepower_threat_defense_software	7.1.0.2
cisco	firepower_threat_defense_software	7.1.0.3
cisco	firepower_threat_defense_software	7.2.0
cisco	firepower_threat_defense_software	7.2.0.1
cisco	firepower_threat_defense_software	7.2.1
cisco	firepower_threat_defense_software	7.2.2
cisco	firepower_threat_defense_software	7.2.3
cisco	firepower_threat_defense_software	7.2.4
cisco	firepower_threat_defense_software	7.2.4.1
cisco	firepower_threat_defense_software	7.2.5
cisco	firepower_threat_defense_software	7.2.5.1
cisco	firepower_threat_defense_software	7.2.5.2
cisco	firepower_threat_defense_software	7.2.6
cisco	firepower_threat_defense_software	7.2.7
cisco	firepower_threat_defense_software	7.2.8
cisco	firepower_threat_defense_software	7.2.8.1
cisco	firepower_threat_defense_software	7.2.9
cisco	firepower_threat_defense_software	7.2.10
cisco	firepower_threat_defense_software	7.2.10.2
cisco	firepower_threat_defense_software	7.3.0
cisco	firepower_threat_defense_software	7.3.1
cisco	firepower_threat_defense_software	7.3.1.1
cisco	firepower_threat_defense_software	7.3.1.2
cisco	firepower_threat_defense_software	7.4.0
cisco	firepower_threat_defense_software	7.4.1
cisco	firepower_threat_defense_software	7.4.1.1
cisco	firepower_threat_defense_software	7.4.2
cisco	firepower_threat_defense_software	7.4.2.1
cisco	firepower_threat_defense_software	7.4.2.2
cisco	firepower_threat_defense_software	7.4.2.3
cisco	firepower_threat_defense_software	7.4.2.4
cisco	firepower_threat_defense_software	7.6.0
cisco	firepower_threat_defense_software	7.6.1
cisco	firepower_threat_defense_software	7.6.2
cisco	firepower_threat_defense_software	7.6.2.1
cisco	firepower_threat_defense_software	7.7.0
cisco	firepower_threat_defense_software	7.7.10
cisco	firepower_threat_defense_software	7.7.10.1

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-476 - NULL Pointer Dereference
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-cmd-inj-mTzGZexf