CVE-2017-3887Improper Handling of Exceptional Conditions in Cisco Firepower Threat Defense

CWE-755Improper Handling of Exceptional ConditionsCWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents4 sources
Severity
5.9MEDIUMNVD
EPSS
0.6%
top 31.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Firepower Threat Defense
Timeline
PublishedApr 7
Latest updateMay 13

Description

A vulnerability in the detection engine that handles Secure Sockets Layer (SSL) packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition because the Snort process unexpectedly restarts. This vulnerability affects Cisco Firepower System Software prior to the first fixed release when it is configured with an SSL Decrypt-Resign policy. More Information: CSCvb62292. Known Affected Releases: 6.0.1 6.1.0 6.2.0. Known Fixed

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages1 packages

NVDcisco/firepower_threat_defense6.0.1, 6.1.0, 6.2.0+2

🔴Vulnerability Details

2
GHSA
GHSA-6h9g-8whp-24px: A vulnerability in the detection engine that handles Secure Sockets Layer (SSL) packets for Cisco Firepower System Software could allow an unauthentic2022-05-13
CVEList
CVE-2017-3887: A vulnerability in the detection engine that handles Secure Sockets Layer (SSL) packets for Cisco Firepower System Software could allow an unauthentic2017-04-07

📋Vendor Advisories

1
Cisco
Cisco Firepower Detection Engine SSL Denial of Service Vulnerability2017-04-05
CVE-2017-3887 — Cisco vulnerability | cvebase