Lucene search

[email protected]CVE-2020-3255

HistoryMay 06, 2020 - 5:15 p.m.

CVE-2020-3255

2020-05-0617:15:00

CWE-400

[email protected]

web.nvd.nist.gov

cisco

firepower

threat defense

ftd software

remote attack

dos

denial of service

vulnerability

cve-2020-3255

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

48.0%

JSON

A vulnerability in the packet processing functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to inefficient memory management. An attacker could exploit this vulnerability by sending a high rate of IPv4 or IPv6 traffic through an affected device. This traffic would need to match a configured block action in an access control policy. An exploit could allow the attacker to cause a memory exhaustion condition on the affected device, which would result in a DoS for traffic transiting the device, as well as sluggish performance of the management interface. Once the flood is stopped, performance should return to previous states.

CPENameOperatorVersion
cisco:firepower_threat_defensecisco firepower threat defenselt6.4.0.9
cisco:firepower_threat_defensecisco firepower threat defenselt6.3.0.6
cisco:firepower_threat_defensecisco firepower threat defenselt6.2.3.16
cisco:asa_5505_firmwarecisco asa 5505 firmwareeq9.10\(1.3\)
cisco:asa_5510_firmwarecisco asa 5510 firmwareeq9.10\(1.3\)
cisco:asa_5512-x_firmwarecisco asa 5512-x firmwareeq9.10\(1.3\)
cisco:asa_5515-x_firmwarecisco asa 5515-x firmwareeq9.10\(1.3\)
cisco:asa_5520_firmwarecisco asa 5520 firmwareeq9.10\(1.3\)
cisco:asa_5525-x_firmwarecisco asa 5525-x firmwareeq9.10\(1.3\)
cisco:asa_5540_firmwarecisco asa 5540 firmwareeq9.10\(1.3\)

CPE	Name	Operator	Version
cisco:firepower_threat_defense	cisco firepower threat defense	lt	6.4.0.9
cisco:firepower_threat_defense	cisco firepower threat defense	lt	6.3.0.6
cisco:firepower_threat_defense	cisco firepower threat defense	lt	6.2.3.16
cisco:asa_5505_firmware	cisco asa 5505 firmware	eq	9.10\(1.3\)
cisco:asa_5510_firmware	cisco asa 5510 firmware	eq	9.10\(1.3\)
cisco:asa_5512-x_firmware	cisco asa 5512-x firmware	eq	9.10\(1.3\)
cisco:asa_5515-x_firmware	cisco asa 5515-x firmware	eq	9.10\(1.3\)
cisco:asa_5520_firmware	cisco asa 5520 firmware	eq	9.10\(1.3\)
cisco:asa_5525-x_firmware	cisco asa 5525-x firmware	eq	9.10\(1.3\)
cisco:asa_5540_firmware	cisco asa 5540 firmware	eq	9.10\(1.3\)

Rows per page:

1-10 of 151

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-dos-N2vQZASR

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

48.0%

JSON

Related for CVE-2020-3255

nessus1 cisco1 prion1 threatpost1