A vulnerability in the LUA interperter of the Remote Access SSL VPN feature of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Threat Defense (FTD) Software could allow an authenticated, remote attacker with a valid VPN connection to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition. This does not affect the management or MUS interfaces. This vulnerability is due to trusting user input without validation in the LUA interprerter. An attacker could exploit this vulnerability by sending crafted HTTP packets to the Remote Access SSL VPN server. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.
Conclusion & alert: CVE-2026-20100 is rated Moderate Risk (40.4/100): CVSS High severity, with low exploitation likelihood (EPSS 0.10%). Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-05-05 | 0.15% | 0.10% | -0.05% |
| 2 | 2026-03-05 | — | 0.15% | — |
Full EPSS history (2 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 7.7 | 3.1 | HIGH |
|
3.1 | 4.0 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| cisco | adaptive_security_appliance_software | 9.12.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.1:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.1.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.1.2:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.1.3 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.1.3:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.2:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.2.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.2.1:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.2.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.2.4:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.2.5 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.2.5:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.2.9 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.2.9:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.3 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.3:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.3.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.3.2:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.3.7 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.3.7:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.3.9 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.3.9:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.3.12 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.3.12:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.2:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.4:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.7 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.7:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.8 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.8:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.10 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.10:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.13 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.13:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.18 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.18:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.24 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.24:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.26 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.26:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.29 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.29:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.30 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.30:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.35 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.35:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.37 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.37:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.38 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.38:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.39 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.39:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.40 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.40:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.41 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.41:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.47 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.47:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.48 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.48:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.50 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.50:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.52 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.52:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.54 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.54:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.55 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.55:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.56 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.56:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.58 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.58:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.62 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.62:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.65 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.65:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.12.4.67 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.12.4.67:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.1:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.1.28 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.1.28:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.2:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.2.3 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.2.3:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.2.7 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.2.7:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.2.11 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.2.11:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.2.13 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.2.13:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.2.14 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.2.14:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.3 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.3:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.3.3 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.3.3:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.3.14 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.3.14:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.3.15 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.3.15:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.3.19 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.3.19:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.3.23 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.3.23:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.9 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.9:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.14 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.14:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.19 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.19:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.27 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.27:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.38 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.38:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.39 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.39:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.42 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.42:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.48 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.48:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.55 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.55:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.57 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.57:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.61 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.61:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.62 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.62:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.67 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.67:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.70 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.70:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.71 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.71:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.76 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.76:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.82 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.82:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.16.4.84 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4.84:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.17.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.17.1:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.17.1.7 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.17.1.7:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.17.1.9 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.17.1.9:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.17.1.10 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.17.1.10:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 9.17.1.11 | cpe:2.3:o:cisco:adaptive_security_appliance_software:9.17.1.11:*:*:*:*:*:*:* |