CVE-2026-20064 — Vulnetix

CVE-2026-20064 PUBLISHED CVSS 6.5 MEDIUM

A vulnerability in of Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, local attacker to cause the device to unexpectedly reload, causing a denial of service (DoS) condition. This vulnerability is due to improper validation of user-supplied input. An attacker with a low-privileged account could exploit this vulnerability by using crafted commands at the CLI prompt. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.

EPSS 0.03% · 10.7th percentile

Risk Scores

CVSS 3.1

6.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

EPSS Score

0.03%

10.7th percentile

Affected Products

Vendor	Product	Versions
Cisco	Cisco Secure Firewall Threat Defense (FTD) Software	6.4.0, 6.4.0.1, 6.4.0.2

Exploit Intelligence

CIRCL seen: CVE-2026-20064 (circl-sighting)
cisco-sa-ftd-cmd-inj-mTzGZexf (circl)

Timeline

Oct 8, 2025 CVE ID Reserved
Mar 4, 2026 CVE Published
Mar 4, 2026 CVE Updated
Mar 4, 2026 PoC Published
Mar 5, 2026 EPSS Score
Mar 6, 2026 EPSS Score
Mar 7, 2026 EPSS Score
Mar 9, 2026 EPSS Score
Mar 10, 2026 EPSS Score
Mar 11, 2026 EPSS Score
Mar 12, 2026 EPSS Score
Mar 14, 2026 EPSS Score

References

cisco-sa-ftd-cmd-inj-mTzGZexf url
https://nvd.nist.gov/vuln/detail/CVE-2026-20064 advisory

Open in Interactive Console →