CVE-2020-3283

CWE-119 — Buffer Overflow CWE-787 — Out-of-bounds Write4 documents4 sources

Severity

8.6HIGH

EPSS

1.3%

top 20.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firepower Threat Defense Cisco Cisco Firepower Threat Defense Software Cisco ASA 5505 Firmware +11 more

Timeline

PublishedMay 6

Latest updateMay 24

Description

A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) handler of Cisco Firepower Threat Defense (FTD) Software when running on the Cisco Firepower 1000 Series platform could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition on an affected device. The vulnerability is due to a communication error between internal functions. An attacker could exploit this vulnerability by sending a crafted SSL/TLS message to an affected device. A su…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages14 packages

▶CVEListV5cisco/cisco_firepower_threat_defense_softwaren/a

▶NVDcisco/firepower_threat_defense6.4.0 — 6.4.0.9

▶NVDcisco/asa_5505_firmware9.12\(2.12\), 9.13\(0.33\)+1

▶NVDcisco/asa_5510_firmware9.12\(2.12\), 9.13\(0.33\)+1

▶NVDcisco/asa_5520_firmware9.12\(2.12\), 9.13\(0.33\)+1

🔴Vulnerability Details

GHSA

GHSA-v2w7-xjpq-rmv5: A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) handler of Cisco Firepower Threat Defense (FTD) Software when running↗2022-05-24

▶

CVEList

Cisco Firepower 1000 Series SSL/TLS Denial of Service Vulnerability↗2020-05-06

▶

📋Vendor Advisories

Cisco

Cisco Firepower 1000 Series SSL/TLS Denial of Service Vulnerability↗2020-05-06

▶