Cisco Releases April 2022 ASA, FMC, and FTD Software Security Advisory

Nineteen vulnerabilities are included in the semi-annual Cisco Adaptive Security Appliance Software (ASA), Firepower Management Center (FMC) Software, and Firepower Threat Defense (FTD) Software Security Advisory bundled publication

Threat ID:: CC-4086
Threat Severity:: Information only
Published:: 29 April 2022 3:12 PM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

Affected platforms

The following platforms are known to be affected:

Cisco FirePower Threat Defense (FTD)

Cisco Adaptive Security Appliance (ASA) Software

Cisco Firepower Management Center (FMC) Software

Threat details

Introduction

Cisco has released seventeen security advisories that cover nineteen vulnerabilities in its semi-annual bundle of Cisco Adaptive Security Appliance Software (ASA), Firepower Management Center (FMC) Software, and Firepower Threat Defense (FTD) Software Advisories.

The eleven High impact vulnerabilities concern privilege escalation, denial of service, clientless SSL VPN heap overflow, information disclosure, and file upload security bypass. The six Medium impact vulnerabilities included in the bundle address vulnerabilities around cross-site scripting, denial of service, XML injection, information disclosure, and DNS feed bypass.

A remote, unauthenticated attacker could exploit these vulnerabilities to take control of an affected system.

Remediation advice

Affected organisations are encouraged to review April 2022 Cisco ASA, FMC, and FTD Software Security Advisory bundled publication and the following Cisco Security Advisories and apply the necessary updates or workarounds.

Remediation steps

Type	Step
Patch	Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities \| cisco-sa-fmc-xss-qXz4uAkM https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-qXz4uAkM
Patch	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access SSL VPN Denial of Service Vulnerability \| cisco-sa-asa-dos-tL4uA4AA https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-dos-tL4uA4AA
Patch	Cisco Firepower Threat Defense Software XML Injection Vulnerability \| cisco-sa-ftd-xmlinj-8GWjGzKe https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-xmlinj-8GWjGzKe
Patch	Cisco Firepower Threat Defense Software Security Intelligence DNS Feed Bypass Vulnerability \| cisco-sa-ftd-sidns-bypass-3PzA5pO https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-sidns-bypass-3PzA5pO
Patch	Cisco Adaptive Security Appliance Software Clientless SSL VPN Heap Overflow Vulnerability \| cisco-sa-asa-ssl-vpn-heap-zLX3FdX https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ssl-vpn-heap-zLX3FdX
Patch	Cisco Firepower Management Center Software Cross-Site Scripting Vulnerability \| cisco-sa-fmc-xss-SfpEcvGT https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-SfpEcvGT
Patch	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software IPsec IKEv2 VPN Information Disclosure Vulnerability \| cisco-sa-asaftd-ipsec-mitm-CKnLr4 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ipsec-mitm-CKnLr4
Patch	Cisco Firepower Management Center File Upload Security Bypass Vulnerability \| cisco-sa-fmc-security-bypass-JhOd29Gg https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-security-bypass-JhOd29Gg
Patch	Cisco Firepower Management Center Software Information Disclosure Vulnerability \| cisco-sa-fmc-infdisc-guJWRwQu https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-infdisc-guJWRwQu
Patch	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Denial of Service Vulnerability \| cisco-sa-asafdt-webvpn-dos-tzPSYern https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asafdt-webvpn-dos-tzPSYern
Patch	Cisco Firepower Threat Defense Software TCP Proxy Denial of Service Vulnerability \| cisco-sa-ftd-tcp-dos-kM9SHhOu https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-tcp-dos-kM9SHhOu
Patch	Cisco Firepower Threat Defense Software Local Malware Analysis Denial of Service Vulnerability \| cisco-sa-ftd-amp-local-dos-CUfwRJXT https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-amp-local-dos-CUfwRJXT
Patch	Cisco Firepower Threat Defense Software Snort Out of Memory Denial of Service Vulnerability \| cisco-sa-ftd-snort-dos-hd2hFgM https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort-dos-hd2hFgM
Patch	Cisco Firepower Threat Defense Software Denial of Service Vulnerability \| cisco-sa-ftd-dos-JnnJm4wB https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-dos-JnnJm4wB
Patch	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Privilege Escalation Vulnerability \| cisco-sa-asaftd-mgmt-privesc-BMFMUvye https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-mgmt-privesc-BMFMUvye
Patch	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software DNS Inspection Denial of Service Vulnerability \| cisco-sa-asaftd-dos-nJVAwOeq https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-dos-nJVAwOeq
Patch	Cisco Firepower Threat Defense Software DNS Enforcement Denial of Service Vulnerability \| cisco-sa-FTD-snort3-DOS-Aq38LVdM https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-FTD-snort3-DOS-Aq38LVdM

Definitive source of threat updates

CVE Vulnerabilities