Known Exploited Vulnerability: CVE-2020-3259

Cisco ASA and FTD Information Disclosure Vulnerability

Catalog version: 2026.07.16 Date added: 2024-02-15 Due date: 2024-03-07 CISA catalog

Vendor: Cisco

Product: Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)

Required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Known ransomware campaign use: Known

Notes: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-info-disclose-9eJtycMB https://nvd.nist.gov/vuln/detail/CVE-2020-3259

CWEs

cvelogic Threat Intelligence