CVE-2022-20767 — Allocation of Resources Without Limits or Throttling in Cisco Firepower Threat Defense

CWE-399 CWE-770 — Allocation of Resources Without Limits or Throttling4 documents4 sources

Severity

7.5HIGHNVD

CNA8.6

EPSS

1.3%

top 19.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firepower Threat Defense Cisco Firepower Threat Defense Software

Timeline

PublishedMay 3

Latest updateMay 4

Description

A vulnerability in the Snort rule evaluation function of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper handling of the DNS reputation enforcement rule. An attacker could exploit this vulnerability by sending crafted UDP packets through an affected device to force a buildup of UDP connections. A successful exploit could allow the attacker to caus…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5cisco/cisco_firepower_threat_defense_softwaren/a

▶NVDcisco/firepower_threat_defense< 7.0.2+1

🔴Vulnerability Details

GHSA

GHSA-6hf5-f728-cg27: A vulnerability in the Snort rule evaluation function of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker↗2022-05-04

▶

CVEList

Cisco Firepower Threat Defense Software DNS Enforcement Denial of Service Vulnerability↗2022-05-03

▶

📋Vendor Advisories

Cisco

Cisco Firepower Threat Defense Software DNS Enforcement Denial of Service Vulnerability↗2022-04-27

▶