CVE-2017-6625 — Cisco Firepower Threat Defense vulnerability

CWE-3994 documents4 sources

Severity

7.1HIGHNVD

EPSS

0.6%

top 29.17%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firepower Threat Defense

Timeline

PublishedMay 3

Latest updateMay 13

Description

A "Cisco Firepower Threat Defense 6.0.0 through 6.2.2 and Cisco ASA with FirePOWER Module Denial of Service" vulnerability in the access control policy of Cisco Firepower System Software could allow an authenticated, remote attacker to cause an affected system to stop inspecting and processing packets, resulting in a denial of service (DoS) condition. The vulnerability is due to improper SSL policy handling by the affected software when packets are passed through the sensing interfaces of an aff…

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:HExploitability: 2.8 | Impact: 4.2

Affected Packages1 packages

▶NVDcisco/firepower_threat_defense7 versions+6

🔴Vulnerability Details

GHSA

GHSA-97f5-2h76-3gpr: A "Cisco Firepower Threat Defense 6↗2022-05-13

▶

CVEList

CVE-2017-6625: A "Cisco Firepower Threat Defense 6↗2017-05-03

▶

📋Vendor Advisories

Cisco

Cisco Firepower Threat Defense and Cisco ASA with FirePOWER Module Denial of Service Vulnerability↗2017-05-03

▶