CVE-2018-0254 — Protection Mechanism Failure in Cisco Firepower Threat Defense

CWE-693 — Protection Mechanism Failure4 documents4 sources

Severity

5.3MEDIUMNVD

EPSS

0.2%

top 54.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firepower Threat Defense

Timeline

PublishedApr 19

Latest updateMay 13

Description

A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass configured file action policies if an Intelligent Application Bypass (IAB) with a drop percentage threshold is also configured. The vulnerability is due to incorrect counting of the percentage of dropped traffic. An attacker could exploit this vulnerability by sending network traffic to a targeted device. An exploit could allow the attacker to bypass configured fil…

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages1 packages

▶NVDcisco/firepower_threat_defense4 versions+3

🔴Vulnerability Details

GHSA

GHSA-h2c2-gxr2-8xp4: A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass configured file a↗2022-05-13

▶

CVEList

CVE-2018-0254: A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass configured file a↗2018-04-19

▶

📋Vendor Advisories

Cisco

Cisco Firepower System Software Intelligent Application Bypass Vulnerability↗2018-04-18

▶