CVE-2024-20359β€”Cisco ASA and FTD Privilege Escalation Vulnerability

PUBLISHEDvulnerability record
2024-04-24 Β· last modified June 21, 2025

Metadata

CVE ID:
CVE-2024-20359
Project:
Cisco
Product:
Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)
Date Added:
2024-04-24
Due Date:
2024-05-01
Last Updated:
June 21, 2025

Vulnerability Name

Cisco ASA and FTD Privilege Escalation Vulnerability

Description

Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain a privilege escalation vulnerability that can allow local privilege escalation from Administrator to root.

Known To Be Used in Ransomware Campaigns?

Ransomware Status:
Unknown

Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes

Related News Articles

Related Weaknesses