Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-20071
HistoryNov 01, 2023 - 6:15 p.m.

CVE-2023-20071

2023-11-0118:15:09
CWE-1039
[email protected]
web.nvd.nist.gov
5
cisco products
snort engine
bypass
configured policies
ftp traffic
vulnerability

CVSS3

5.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

30.5%

JSON

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a flaw in the FTP module of the Snort detection engine. An attacker could exploit this vulnerability by sending crafted FTP traffic through an affected device. A successful exploit could allow the attacker to bypass FTP inspection and deliver a malicious payload.

Affected configurations

Nvd
Node
ciscofirepower_threat_defenseRange<6.4.0.17
OR
ciscofirepower_threat_defenseRange6.5.07.0.6
OR
ciscofirepower_threat_defenseRange7.1.07.2.4
OR
ciscofirepower_threat_defenseRange7.3.07.3.1.2
AND
snortsnortMatch2.0-
Node
ciscofirepower_threat_defenseRange6.7.07.0.5
OR
ciscofirepower_threat_defenseRange7.1.07.1.0.3
OR
ciscofirepower_threat_defenseRange7.2.07.2.1
AND
snortsnortRange<3.1.32.0
Node
ciscocyber_visionRange<4.1.3
Node
ciscounified_threat_defenseRange17.317.3.8
OR
ciscounified_threat_defenseRange17.617.6.6
OR
ciscounified_threat_defenseRange17.917.9.4
OR
ciscounified_threat_defenseRange17.1117.11.1a
OR
ciscounified_threat_defenseRange17.1217.12.1a
Node
ciscomeraki_mx_security_appliance_firmwareMatch-
VendorProductVersionCPE
ciscofirepower_threat_defense*cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*
snortsnort2.0cpe:2.3:a:snort:snort:2.0:-:*:*:*:*:*:*
snortsnort*cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*
ciscocyber_vision*cpe:2.3:a:cisco:cyber_vision:*:*:*:*:*:*:*:*
ciscounified_threat_defense*cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*
ciscomeraki_mx_security_appliance_firmware-cpe:2.3:o:cisco:meraki_mx_security_appliance_firmware:-:*:*:*:*:*:*:*

Related

nessus 3
prion 1
cvelist 1
cve 1
cisco 1
nessus
nessus
Multiple Cisco Products Snort FTP Inspection Bypass (cisco-sa-snort-ftd-zXYtnjOM)
2023-11-01 00:00:00
Multiple Cisco Products Snort FTP Inspection Bypass (cisco-sa-snort-ftd-zXYtnjOM) (CSCwd83613)
2023-11-06 00:00:00
Multiple Cisco Products Snort FTP Inspection Bypass (cisco-sa-snort-ftd-zXYtnjOM) (CSCwb69096)
2023-11-06 00:00:00
prion
prion
Design/Logic Flaw
2023-11-01 18:15:00
cvelist
cvelist
CVE-2023-20071
2023-11-01 17:07:44
cve
cve
CVE-2023-20071
2023-11-01 18:15:09
cisco
cisco
Multiple Cisco Products Snort FTP Inspection Bypass Vulnerability
2023-11-01 16:00:00

CVSS3

5.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

30.5%

JSON
Related for NVD:CVE-2023-20071
nessus3prion1cvelist1cve1cisco1