High Severity Cisco ASA and Cisco FTD Firewalls Vulnerabilities

About the Author

Shaju Ahmed

Shaju works as CyberMaxx's Security Engineering Team Lead in the SCM Firewall department.

CrowdStrike, SentinelOne, and MS Defender: The EDR Trio Powering CyberMaxx’s Advanced Threat Detection

Articles

5 min read

Behind the Alert: How EDR Use Behavioral Data to Detect Threats

Articles

6 min read

On April 24, 2024, Cisco released two high-severity security advisories that impact both their Cisco ASA and Cisco FTD firewalls as follows:

CVE-2024-20353 – https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-websrvs-dos-X8gNucD2

CVE-2024-20359 – https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-persist-rce-FLsNXF4h

Based on the advisories there is no workaround available for either vulnerabilities mentioned above at this point. Cisco has released patches for both the above-mentioned vulnerabilities. Update to the latest version ASAP to prevent potential disruption.

Our threat hunting team has been informed and is actively investigating for signs of compromise of this threat. The CyberMaxx team is continuing to monitor this situation and is working to keep your network safe.

High Severity Cisco ASA and Cisco FTD Firewalls Vulnerabilities

Table of Contents

About the Author

Additional Resources:

CrowdStrike, SentinelOne, and MS Defender: The EDR Trio Powering CyberMaxx’s Advanced Threat Detection

Behind the Alert: How EDR Use Behavioral Data to Detect Threats

High Severity Cisco ASA and Cisco FTD Firewalls Vulnerabilities

Table of Contents

About the Author

Additional Resources:

CrowdStrike, SentinelOne, and MS Defender: The EDR Trio Powering CyberMaxx’s Advanced Threat Detection

Behind the Alert: How EDR Use Behavioral Data to Detect Threats

Additional Resources:

CVE-2024-38063

RockYou2024 Password List

LockBit takedown May 2024