CVE-2026-20006 — Vulnetix

CVE-2026-20006 PUBLISHED CVSS 5.800000190734863 MEDIUM

A vulnerability in the TLS cryptography functionality of the Snort 3 Detection Engine of Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to unexpectedly restart, resulting in a denial of service (DoS) condition. This vulnerability is due to improper implementation of the TLS protocol. An attacker could exploit this vulnerability by sending a crafted TLS packet to an affected system. A successful exploit could allow the attacker to cause a device that is running Cisco Secure FTD Software to drop network traffic, resulting in a DoS condition.  Note: TLS 1.3 is not affected by this vulnerability.

EPSS 0.12% · 31.4th percentile

Risk Scores

CVSS v3.1

5.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

EPSS Score

0.12%

31.4th percentile

Affected Products

Vendor	Product	Versions
Cisco	Cisco Secure Firewall Threat Defense (FTD) Software	7.2.0, 7.2.0.1, 7.2.1

Timeline

Oct 8, 2025 CVE ID Reserved
Mar 4, 2026 CVE Published
Mar 4, 2026 CVE Updated
Mar 5, 2026 EPSS Score
Mar 6, 2026 EPSS Score
Mar 7, 2026 EPSS Score
Mar 8, 2026 EPSS Score
Mar 9, 2026 EPSS Score
Mar 10, 2026 EPSS Score
Mar 11, 2026 EPSS Score
Mar 12, 2026 EPSS Score
Mar 13, 2026 EPSS Score

References

cisco-sa-ftd-tcp-dos-rHfqnwRg url
https://nvd.nist.gov/vuln/detail/CVE-2026-20006 advisory

Open in Interactive Console →