CVE-2020-3259CISA KEVEPSS p99.3%
CVE-2020-3259Cisco ASA and FTD Information Disclosure Vulnerability
Cisco / Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)
Description
Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an information disclosure vulnerability. An attacker could retrieve memory contents on an affected device, which could lead to the disclosure of confidential information due to a buffer tracking issue when the software parses invalid URLs that are requested from the web services interface. This vulnerability affects only specific AnyConnect and WebVPN configurations.
Scoring
| EPSS | 71.79% probability of exploitation · percentile 99.3% · 2026-06-18T12:00:27Z |
CISA KEV entry
Added to KEV: 2024-02-15
(incoming)1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| KEVEntry | Cisco ASA and FTD Information Disclosure Vulnerabilitykev-cve-2020-3259 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.