Remote Access VPN Brute Force Denial of Service Vulnerability (Cisco)

A vulnerability in the Remote Access VPN (RAVPN) service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) of the RAVPN service.

This vulnerability is due to resource exhaustion. An attacker could exploit this vulnerability by sending many VPN authentication requests to an affected device. A successful exploit could allow the attacker to exhaust resources, resulting in a DoS of the RAVPN service on the affected device.

The Uganda National CERT and Coordination Center (CERT.UG/CC) encourages users and administrators to review the advisories and apply the necessary updates.

RELATED ADVISORIES

Advisories 20 July 2024

Mass IT Outage – CrowdStrike Update

A significant IT outage has impacted global institutions, including banks, media outlets, airlines, and emergency services. While the precise cause is under investigation, initial reports link the outage to issues with Microsoft PC operating systems. Microsoft's updates indicate recovery for most services, but disruptions persist globally.

Impact on Uganda

Although the primary effects are international, Ugandan organizations using Microsoft services may experience indirect impacts such as delays, connectivity issues, and reduced service availability. It's crucial for Ugandan entities to remain vigilant and prepared.

Vulnerabilities in Cisco ASA and FTD Software

Advisories 9 May 2024

Unauthenticated Command Injection vulnerability in SD-WAN Edge (VMware)

Advisories 9 May 2024

Microsoft SharePoint Server Remote Code Execution Vulnerability

Advisories 9 May 2024

Android Pixel Privilege Escalation Vulnerability

Advisories 9 May 2024

Cisco Releases Security Updates for IOS XR Software

Advisories 9 April 2024

Forticlient EMS flaw actively exploited in the wild

Advisories 9 April 2024