Vulnerability Details : CVE-2023-20275

A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to send packets with another VPN user's source IP address. This vulnerability is due to improper validation of the packet's inner source IP address after decryption. An attacker could exploit this vulnerability by sending crafted packets through the tunnel. A successful exploit could allow the attacker to send a packet impersonating another VPN user's IP address. It is not possible for the attacker to receive return packets.
Published 2023-12-12 18:15:17
Updated 2024-01-25 17:15:44
Source Cisco Systems, Inc.
View at NVD,   CVE.org

Products affected by CVE-2023-20275

Exploit prediction scoring system (EPSS) score for CVE-2023-20275

EPSS FAQ
0.07%
Probability of exploitation activity in the next 30 days EPSS Score History
~ 32 %
Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-20275

Base Score Base Severity CVSS Vector Exploitability Score Impact Score Score Source First Seen
4.3
 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
2.8
1.4
 NIST
4.1
 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:N
2.3
1.4
 Cisco Systems, Inc.

CWE ids for CVE-2023-20275

  • The product does not properly verify that the source of data or communication is valid.
    Assigned by: ykramarz@cisco.com (Secondary)

References for CVE-2023-20275

Jump to
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close