CVE-2017-12245 — Missing Release of Resource after Effective Lifetime in Cisco Secure Firewall Management Center

CWE-399 CWE-772 — Missing Release of Resource after Effective Lifetime4 documents4 sources

Severity

8.6HIGHNVD

EPSS

0.7%

top 28.79%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Secure Firewall Management Center

Timeline

PublishedOct 5

Latest updateMay 13

Description

A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause depletion of system memory, aka a Firepower Detection Engine SSL Decryption Memory Consumption Denial of Service vulnerability. If this memory leak persists over time, a denial of service (DoS) condition could develop because traffic can cease to be forwarded through the device. The vulnerability is due to an error in how the Firepower Detection Sno…

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages1 packages

▶NVDcisco/secure_firewall_management_center9 versions+8

🔴Vulnerability Details

GHSA

GHSA-vr7m-hqg9-v4mf: A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause d↗2022-05-13

▶

CVEList

CVE-2017-12245: A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause d↗2017-10-05

▶

📋Vendor Advisories

Cisco

Cisco Firepower Detection Engine SSL Decryption Memory Consumption Denial of Service Vulnerability↗2017-10-04

▶