CVE-2020-3315Protection Mechanism Failure in Cisco Firepower Threat Defense

CWE-693Protection Mechanism FailureCWE-668Resource Exposure5 documents5 sources
Severity
5.3MEDIUMNVD
EPSS
1.1%
top 21.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Cisco Firepower Threat DefenseCisco Firepower Threat Defense SoftwareCisco IOS+1 more
Timeline
PublishedMay 6
Latest updateMay 24

Description

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured file policies on an affected system. The vulnerability is due to errors in how the Snort detection engine handles specific HTTP responses. An attacker could exploit this vulnerability by sending crafted HTTP packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured file

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages4 packages

NVDcisco/ios15.2\(7\)e, 16.11.2, 17.3.1+2
NVDcisco/secure_firewall_management_center2.9.14.4, 2.9.15, 2.9.16+2

🔴Vulnerability Details

3
GHSA
GHSA-m4mg-49c8-xj46: Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass t2022-05-24
CVEList
Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability2020-05-06
OSV
CVE-2020-3315: Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass t2020-05-06

📋Vendor Advisories

1
Cisco
Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability2020-05-06
CVE-2020-3315 — Protection Mechanism Failure in Cisco | cvebase