{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T02:08:32.339","vulnerabilities":[{"cve":{"id":"CVE-2025-20133","sourceIdentifier":"psirt@cisco.com","published":"2025-08-14T17:15:34.130","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in the management and VPN web servers of the Remote Access SSL VPN feature of Cisco Secure Firewall ASA Software and Secure FTD Software could allow an unauthenticated, remote attacker to cause the device to unexpectedly stop responding, resulting in a DoS condition.\r\n\r\nThis vulnerability is due to ineffective validation of user-supplied input during the Remote Access SSL VPN authentication process. An attacker could exploit this vulnerability by sending a crafted request to the VPN service on an affected device. A successful exploit could allow the attacker to cause a DoS condition where the device stops responding to Remote Access SSL VPN authentication requests."},{"lang":"es","value":"Una vulnerabilidad en los servidores web de administración y VPN de la función VPN de acceso remoto SSL del software Cisco Secure Firewall ASA y del software Secure FTD podría permitir que un atacante remoto no autenticado provoque que el dispositivo deje de responder inesperadamente, lo que resulta en una denegación de servicio (DoS). Esta vulnerabilidad se debe a una validación ineficaz de la información proporcionada por el usuario durante el proceso de autenticación de la VPN de acceso remoto SSL. Un atacante podría explotar esta vulnerabilidad enviando una solicitud manipulada al servicio VPN en un dispositivo afectado. Una explotación exitosa podría permitir al atacante provocar una denegación de servicio (DoS) donde el dispositivo deja de responder a las solicitudes de autenticación de la VPN de acceso remoto SSL."}],"metrics":{"cvssMetricV31":[{"source":"psirt@cisco.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":4.0}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-401"}]}],"references":[{"url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-vpn-dos-mfPekA6e","source":"psirt@cisco.com"}]}}]}