6.6.4

DATE	CVE	VULNERABILITY TITLE	RISK
2020-10-21	CVE-2020-3578	Incorrect Authorization vulnerability in Cisco products A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured access rule and access parts of the WebVPN portal that are supposed to be blocked. network low complexity cisco CWE-863	6.5