CVE-2026-20025EPSS p6.7%

CVE-2026-20025CVE-2026-20025

cisco / firepower_threat_defense_software

Description

A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an authenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. To exploit this vulnerability, the attacker must have the OSPF secret key. This vulnerability is due to insufficient input validation when processing OSPF link-state update (LSU) packets. An attacker could exploit this vulnerability by sending crafted OSPF LSU packets. A successful exploit could allow the attacker to corrupt the heap, causing the device to reload, resulting in a DoS condition.

Scoring

CVSS 6.8 ()
VectorCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
EPSS0.17% probability of exploitation · percentile 6.7% · 2026-06-18T12:00:27Z
Last modified2026-06-05

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-20243
CVE
CVE-2025-20182
CVE
CVE-2025-20253
CVE
CVE-2025-20134
CVE
CVE-2025-20263
CVE
CVE-2025-20222
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.