For further information on determining if FIPS is configured for Cisco FTD Software, see the Security Certifications Compliance chapter of the Firepower Management Center Configuration Guide.Ĭisco has released free software updates that address the vulnerability described in this advisory.
An attacker could exploit this vulnerability by sending malicious packets over an established IPsec connection. The vulnerability is due to a logic error in how the software cryptography module handles specific types of decryption errors. A vulnerability in the software cryptography module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker or an unauthenticated attacker in a man-in-the-middle position to cause an unexpected reload of the device that results in a denial of service (DoS) condition.