CVE-2025-20359

CWE-127 CWE-8054 documents4 sources

Severity

6.5MEDIUM

EPSS

0.3%

top 47.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Cisco Cyber Vision Cisco Cisco Secure Firewall Threat Defense (ftd) Software Cisco Cisco UTD Snort IPS Engine Software

Timeline

PublishedOct 15

Description

Multiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the disclosure of possible sensitive data or cause the Snort 3 Detection Engine to crash. This vulnerability is due to an error in the logic of buffer handling when the MIME fields of the HTTP header are parsed. This can result in a buffer under-read. An attacker could exploit this vulnerability by sending crafted HTTP packets through an established c…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:LExploitability: 3.9 | Impact: 2.5

Affected Packages3 packages

▶CVEListV5cisco/cisco_utd_snort_ips_engine_software64 versions+63

▶CVEListV5cisco/cisco_cyber_vision51 versions+50

▶CVEListV5cisco/cisco_secure_firewall_threat_defense_(ftd)_software10 versions+9

🔴Vulnerability Details

GHSA

GHSA-wcv6-8jqc-wfcx: Multiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the↗2025-10-15

▶

CVEList

Multiple Cisco Products Snort 3 MIME Information Disclosure or Denial of Service Vulnerability↗2025-10-15

▶

📋Vendor Advisories

Cisco

Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities↗2025-10-15

▶