CVE-2017-6632Uncontrolled Resource Consumption in Cisco Firepower Threat Defense

CWE-399CWE-400Uncontrolled Resource Consumption4 documents4 sources
Severity
7.5HIGHNVD
EPSS
1.4%
top 19.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Firepower Threat Defense
Timeline
PublishedMay 22
Latest updateMay 13

Description

A vulnerability in the logging configuration of Secure Sockets Layer (SSL) policies for Cisco FirePOWER System Software 5.3.0 through 6.2.2 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to high consumption of system resources. The vulnerability is due to the logging of certain TCP packets by the affected software. An attacker could exploit this vulnerability by sending a flood of crafted TCP packets to an affected device. A successful exploit co

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

NVDcisco/firepower_threat_defense11 versions+10

🔴Vulnerability Details

2
GHSA
GHSA-4rxc-c47v-3rf5: A vulnerability in the logging configuration of Secure Sockets Layer (SSL) policies for Cisco FirePOWER System Software 52022-05-13
CVEList
CVE-2017-6632: A vulnerability in the logging configuration of Secure Sockets Layer (SSL) policies for Cisco FirePOWER System Software 52017-05-22

📋Vendor Advisories

1
Cisco
Cisco FirePOWER System Software SSL Logging Denial of Service Vulnerability2017-05-17
CVE-2017-6632 — Uncontrolled Resource Consumption | cvebase