Cisco fixed a flaw in ASA, FTD devices that can give access to RSA private key


An unauthenticated, remote attacker can exploit the vulnerability, identified as CVE-2022-20866, to retrieve an RSA private key from a device running Cisco ASA and FTD software.

On a device running a vulnerable version of ASA Software or FTD Software, this problem will affect about 5% of the RSA keys; however, not all RSA keys are anticipated to be impacted because of mathematical computations made to the RSA key. Read More…