Many PDS customers use Cisco AnyConnect client VPN on their primary Cisco ASA firewall. Every unpatched firewall with this functionality is vulnerable to attack. An attacker could gain full control of the firewall, which, in turn, could allow unfettered access to systems behind the firewall. Since shutting down client VPN functionality is not realistic for most customers, emergency firmware upgrade is urged. PDS stands ready to assist customers, to ensure timely protection and proper execution of the required upgrades.
For more information from Cisco, please visit:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180129-asa1
