Lucene search

[email protected]CVE-2022-20946

HistoryNov 15, 2022 - 9:15 p.m.

CVE-2022-20946

2022-11-1521:15:35

CWE-787

CWE-122

[email protected]

web.nvd.nist.gov

cisco

firepower

threat defense

gre

tunnel

decapsulation

vulnerability

remote attackers

denial of service

dos

cisco asa

ftd

fmc

nvd

8.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

58.8%

JSON

A vulnerability in the generic routing encapsulation (GRE) tunnel decapsulation feature of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.

This vulnerability is due to a memory handling error that occurs when GRE traffic is processed. An attacker could exploit this vulnerability by sending a crafted GRE payload through an affected device. A successful exploit could allow the attacker to cause the device to restart, resulting in a DoS condition.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-gre-dos-hmedHQPM [“https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-gre-dos-hmedHQPM”]

This advisory is part of the November 2022 release of the Cisco ASA, FTD, and FMC Security Advisory Bundled publication.

Affected configurations

NVD

Node

ciscofirepower_threat_defenseRange6.3.0–6.3.0.5

ciscofirepower_threat_defenseRange6.4.0–6.4.0.15

ciscofirepower_threat_defenseRange6.5.0–6.5.0.5

ciscofirepower_threat_defenseRange6.6.0–6.6.5.2

ciscofirepower_threat_defenseRange6.7.0–6.7.0.3

ciscofirepower_threat_defenseRange7.0.0–7.0.3

ciscofirepower_threat_defenseMatch7.1.0.0

ciscofirepower_threat_defenseMatch7.1.0.1

ciscofirepower_threat_defenseMatch7.1.0.2

CPENameOperatorVersion
cisco:firepower_threat_defensecisco firepower threat defensele6.3.0.5
cisco:firepower_threat_defensecisco firepower threat defensele6.4.0.15
cisco:firepower_threat_defensecisco firepower threat defensele6.5.0.5
cisco:firepower_threat_defensecisco firepower threat defensele6.6.5.2
cisco:firepower_threat_defensecisco firepower threat defensele6.7.0.3
cisco:firepower_threat_defensecisco firepower threat defensele7.0.3
cisco:firepower_threat_defensecisco firepower threat defenseeq7.1.0.0
cisco:firepower_threat_defensecisco firepower threat defenseeq7.1.0.1
cisco:firepower_threat_defensecisco firepower threat defenseeq7.1.0.2

CPE	Name	Operator	Version
cisco:firepower_threat_defense	cisco firepower threat defense	le	6.3.0.5
cisco:firepower_threat_defense	cisco firepower threat defense	le	6.4.0.15
cisco:firepower_threat_defense	cisco firepower threat defense	le	6.5.0.5
cisco:firepower_threat_defense	cisco firepower threat defense	le	6.6.5.2
cisco:firepower_threat_defense	cisco firepower threat defense	le	6.7.0.3
cisco:firepower_threat_defense	cisco firepower threat defense	le	7.0.3
cisco:firepower_threat_defense	cisco firepower threat defense	eq	7.1.0.0
cisco:firepower_threat_defense	cisco firepower threat defense	eq	7.1.0.1
cisco:firepower_threat_defense	cisco firepower threat defense	eq	7.1.0.2

CNA Affected

[
  {
    "vendor": "Cisco",
    "product": "Cisco Firepower Threat Defense Software",
    "versions": [
      {
        "version": "6.6.0",
        "status": "affected"
      },
      {
        "version": "6.6.0.1",
        "status": "affected"
      },
      {
        "version": "6.6.1",
        "status": "affected"
      },
      {
        "version": "6.6.3",
        "status": "affected"
      },
      {
        "version": "6.6.4",
        "status": "affected"
      },
      {
        "version": "6.6.5",
        "status": "affected"
      },
      {
        "version": "6.6.5.1",
        "status": "affected"
      },
      {
        "version": "6.6.5.2",
        "status": "affected"
      },
      {
        "version": "6.4.0",
        "status": "affected"
      },
      {
        "version": "6.4.0.1",
        "status": "affected"
      },
      {
        "version": "6.4.0.3",
        "status": "affected"
      },
      {
        "version": "6.4.0.2",
        "status": "affected"
      },
      {
        "version": "6.4.0.4",
        "status": "affected"
      },
      {
        "version": "6.4.0.5",
        "status": "affected"
      },
      {
        "version": "6.4.0.6",
        "status": "affected"
      },
      {
        "version": "6.4.0.7",
        "status": "affected"
      },
      {
        "version": "6.4.0.8",
        "status": "affected"
      },
      {
        "version": "6.4.0.9",
        "status": "affected"
      },
      {
        "version": "6.4.0.10",
        "status": "affected"
      },
      {
        "version": "6.4.0.11",
        "status": "affected"
      },
      {
        "version": "6.4.0.12",
        "status": "affected"
      },
      {
        "version": "6.4.0.13",
        "status": "affected"
      },
      {
        "version": "6.4.0.14",
        "status": "affected"
      },
      {
        "version": "6.4.0.15",
        "status": "affected"
      },
      {
        "version": "6.7.0",
        "status": "affected"
      },
      {
        "version": "6.7.0.1",
        "status": "affected"
      },
      {
        "version": "6.7.0.2",
        "status": "affected"
      },
      {
        "version": "6.7.0.3",
        "status": "affected"
      },
      {
        "version": "7.0.0",
        "status": "affected"
      },
      {
        "version": "7.0.0.1",
        "status": "affected"
      },
      {
        "version": "7.0.1",
        "status": "affected"
      },
      {
        "version": "7.0.1.1",
        "status": "affected"
      },
      {
        "version": "7.0.2",
        "status": "affected"
      },
      {
        "version": "7.0.2.1",
        "status": "affected"
      },
      {
        "version": "7.0.3",
        "status": "affected"
      },
      {
        "version": "7.1.0",
        "status": "affected"
      },
      {
        "version": "7.1.0.1",
        "status": "affected"
      },
      {
        "version": "7.1.0.2",
        "status": "affected"
      }
    ]
  }
]