Lucene search

[email protected]CVE-2020-3585

HistoryOct 21, 2020 - 7:15 p.m.

CVE-2020-3585

2020-10-2119:15:18

CWE-203

[email protected]

web.nvd.nist.gov

cisco

asa

ftd

vulnerability

tls

cisco firepower

cve-2020-3585

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

4.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.3%

JSON

A vulnerability in the TLS handler of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 1000 Series firewalls could allow an unauthenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper implementation of countermeasures against the Bleichenbacher attack for cipher suites that rely on RSA for key exchange. An attacker could exploit this vulnerability by sending crafted TLS messages to the device, which would act as an oracle and allow the attacker to carry out a chosen-ciphertext attack. A successful exploit could allow the attacker to perform cryptanalytic operations that may allow decryption of previously captured TLS sessions to the affected device. To exploit this vulnerability, an attacker must be able to perform both of the following actions: Capture TLS traffic that is in transit between clients and the affected device Actively establish a considerable number of TLS connections to the affected device

Affected configurations

NVD

Node

ciscofirepower_threat_defenseRange<6.4.0.10

ciscofirepower_threat_defenseRange6.5.0–6.5.0.5

ciscofirepower_threat_defenseRange6.6.0–6.6.1

AND

ciscofirepower_1000Match-

ciscofirepower_1010Match-

ciscofirepower_1120Match-

ciscofirepower_1140Match-

ciscofirepower_1150Match-

Node

ciscoadaptive_security_appliance_softwareRange<9.13.1.13

ciscoadaptive_security_appliance_softwareRange9.14–9.14.1.30

AND

ciscofirepower_1000Match-

ciscofirepower_1010Match-

ciscofirepower_1120Match-

ciscofirepower_1140Match-

ciscofirepower_1150Match-

CPENameOperatorVersion
cisco:firepower_threat_defensecisco firepower threat defenselt6.4.0.10
cisco:firepower_threat_defensecisco firepower threat defenselt6.5.0.5
cisco:firepower_threat_defensecisco firepower threat defenselt6.6.1

CPE	Name	Operator	Version
cisco:firepower_threat_defense	cisco firepower threat defense	lt	6.4.0.10
cisco:firepower_threat_defense	cisco firepower threat defense	lt	6.5.0.5
cisco:firepower_threat_defense	cisco firepower threat defense	lt	6.6.1

CNA Affected

[
  {
    "product": "Cisco Adaptive Security Appliance (ASA) Software ",
    "vendor": "Cisco",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-tls-bb-2g9uWkP

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

4.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.3%

JSON

Related for CVE-2020-3585

prion1 cisco1 nvd1 nessus2 cvelist1