CVE-2024-20330

CWE-7884 documents4 sources

Severity

7.5HIGH

EPSS

0.3%

top 44.55%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Cisco Firepower Threat Defense Software Cisco Firepower Threat Defense

Timeline

PublishedOct 23

Description

A vulnerability in the Snort 2 and Snort 3 TCP and UDP detection engine of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Appliances could allow an unauthenticated, remote attacker to cause memory corruption, which could cause the Snort detection engine to restart unexpectedly. This vulnerability is due to improper memory management when the Snort detection engine processes specific TCP or UDP packets. An attacker could exploit this vulnerability by sending crafte…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages2 packages

▶CVEListV5cisco/cisco_firepower_threat_defense_software37 versions+36

▶NVDcisco/firepower_threat_defense37 versions+36

🔴Vulnerability Details

GHSA

GHSA-prx7-jm7p-362c: A vulnerability in the Snort 2 and Snort 3 TCP and UDP detection engine of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Seri↗2024-10-23

▶

CVEList

Cisco Firepower Threat Defense Software for Cisco Firepower 2100 Series TCP UDP Snort 2 and Snort 2 Denial of Service Vulnerability↗2024-10-23

▶

📋Vendor Advisories

Cisco

Cisco Firepower Threat Defense Software for Cisco Firepower 2100 Series Appliances TCP UDP Snort 2 and Snort 3 Denial of Service Vulnerability↗2024-10-23

▶