CVE-2026-20057
published 2026-03-04CVE-2026-20057: Multiple Cisco products are affected by a vulnerability in the Snort 3 Visual Basic for Applications (VBA) feature which could allow an unauthenticated, remote…
medium5.8CVSS 3.1
AVNACLPRNUINSCCNINAL
Multiple Cisco products are affected by a vulnerability in the Snort 3 Visual Basic for Applications (VBA) feature which could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash.
This vulnerability is due to lack of proper error checking when decompressing VBA data. An attacker could exploit this vulnerability by sending a crafted VBA data to the Snort 3 Detection Engine on the targeted device. A successful exploit could allow the attacker to cause the Snort 3 Detection Engine to unexpectedly restart causing a a denial of service (DoS) condition.
Affected
118 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |
| cisco | cisco_cyber_vision | — | — |