Lucene search
K

204 matches found

Prion
Prion
added 2022/05/03 4:15 a.m.14 views

Design/Logic Flaw

A vulnerability in the local malware analysis process of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on the affected device. This vulnerability is due to insufficient error handling in the local malware...

5CVSS5.3AI score0.01206EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/05/03 4:15 a.m.11 views

Design/Logic Flaw

A vulnerability in the connection handling function in Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper traffic handling when platform limits are...

4.3CVSS7.4AI score0.01166EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/05/03 3:16 a.m.128 views

CVE-2022-20729

Cisco Firepower Threat Defense (FTD) Software CLI is affected by an XML injection vulnerability due to insufficient input validation in the command parser. An authenticated, local attacker could supply crafted input to inject XML, potentially causing unexpected command processing and output. Cisc...

7.8CVSS5.9AI score0.00257EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/05/03 3:15 a.m.18 views

CVE-2022-20760 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software DNS Inspection Denial of Service Vulnerability

A vulnerability in the DNS inspection handler of Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service condition DoS on an affected device. This vulnerability is due to a lack of proper...

8.6CVSS7AI score0.0149EPSS
Exploits0References1
CVE
CVE
added 2022/05/03 3:15 a.m.145 views

CVE-2022-20757

Cisco Firepower Threat Defense (FTD) Software contains a DoS vulnerability where a high-rate UDP flood exploits improper traffic handling once platform limits are reached, causing all new connections to be dropped. This is an unauthenticated, remote attack described in multiple sources (Cisco adv...

8.6CVSS7.9AI score0.01166EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/05/03 3:15 a.m.164 views

CVE-2022-20746

Cisco Firepower Threat Defense (FTD) Software TCP proxy can be DoSed by an unauthenticated, remote attacker via a crafted TCP stream due to improper handling of TCP flows. Impact is device reload leading to availability loss. Cisco and third-party advisories (Cisco Security Advisory, Nessus plugi...

8.6CVSS7.9AI score0.01257EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/05/03 3:15 a.m.26 views

CVE-2022-20745 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Denial of Service Vulnerability

A vulnerability in the web services interface for remote access VPN features of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. This vulnerability is due to...

8.6CVSS8.7AI score0.01385EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/04/28 12:0 a.m.37 views

Cisco Firepower Threat Defense AnyConnect SSL VPN DoS (cisco-sa-vpndtls-dos-TunzLEV)

According to its self-reported version, Cisco FTD Software is affected by a vulnerability in the implementation of the Datagram TLS DTLS protocol that could allow an unauthenticated, remote attacker to cause high CPU utilization, resulting in a denial of service DoS condition. This vulnerability ...

7.5CVSS7.3AI score0.00685EPSS
Exploits0References3
Cisco
Cisco
added 2022/04/27 4:0 p.m.116 views

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software DNS Inspection Denial of Service Vulnerability

A vulnerability in the DNS inspection handler of Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service condition DoS on an affected device. This vulnerability is due to a lack of proper...

8.6CVSS7.8AI score0.0149EPSS
Exploits0References1
Prion
Prion
added 2022/04/21 7:15 p.m.23 views

Race condition

A vulnerability in the implementation of the Datagram TLS DTLS protocol in Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause high CPU utilization, resulting in a denial of service DoS condition...

5CVSS7.5AI score0.00685EPSS
Exploits0References1Affected Software3
Vulnrichment
Vulnrichment
added 2022/04/21 6:50 p.m.18 views

CVE-2022-20795 Cisco Adaptive Security Appliance and Cisco Firepower Threat Defense Software AnyConnect SSL VPN Denial of Service Vulnerability

A vulnerability in the implementation of the Datagram TLS DTLS protocol in Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause high CPU utilization, resulting in a denial of service DoS condition...

5.8CVSS7AI score0.00685EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/11/17 12:0 a.m.21 views

Cisco Firepower Management Center Software Configuration Information Disclosure Vulnerabilities

According to its self-reported version, Cisco FTD Software is affected by multiple vulnerabilities as referenced in the cisco-sa-fmc-infodisc-Ft2WVmNU advisory. Multiple information disclosure vulnerabilities exist in the web-based GUI of Cisco Firepower Management Center FMC. An authenticated,...

4.3CVSS5.5AI score0.00271EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2021/11/03 12:0 a.m.23 views

Cisco Firepower Threat Defense Software CLI Arbitrary File Write (cisco-sa-ftd-file-write-SHVcmQVc)

According to its self-reported version, Cisco FTD Software is affected by a vulnerability due to incomplete validation of user input for a specific CLI command. An authenticated, local attacker can exploit this, by authenticating to the device with administrative privileges, in order to overwrite...

6.6CVSS6.3AI score0.00207EPSS
Exploits0References4
NVD
NVD
added 2021/10/27 7:15 p.m.20 views

CVE-2021-34781

A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on the affected device. This vulnerability is due to a lack of proper error...

8.6CVSS0.01346EPSS
Exploits0References1
NVD
NVD
added 2021/10/27 7:15 p.m.18 views

CVE-2021-34790

Multiple vulnerabilities in the Application Level Gateway ALG for the Network Address Translation NAT feature of Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass the ALG and open unauthorized...

5.3CVSS0.011EPSS
Exploits0References1
NVD
NVD
added 2021/10/27 7:15 p.m.18 views

CVE-2021-34783

A vulnerability in the software-based SSL/TLS message handler of Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. This...

8.6CVSS0.0155EPSS
Exploits0References1
Prion
Prion
added 2021/10/27 7:15 p.m.11 views

Input validation

A vulnerability in the software-based SSL/TLS message handler of Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. This...

7.8CVSS7.4AI score0.0155EPSS
Exploits0References1Affected Software10
Prion
Prion
added 2021/10/27 7:15 p.m.22 views

Design/Logic Flaw

Multiple vulnerabilities in the Application Level Gateway ALG for the Network Address Translation NAT feature of Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass the ALG and open unauthorized...

5CVSS5.6AI score0.011EPSS
Exploits0References1Affected Software11
Prion
Prion
added 2021/10/27 7:15 p.m.18 views

Design/Logic Flaw

A vulnerability in the memory management of Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper resource...

7.8CVSS7.5AI score0.01386EPSS
Exploits0References1Affected Software10
Cvelist
Cvelist
added 2021/10/27 6:56 p.m.21 views

CVE-2021-34793 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Transparent Mode Denial of Service Vulnerability

A vulnerability in the TCP Normalizer of Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software operating in transparent mode could allow an unauthenticated, remote attacker to poison MAC address tables, resulting in a denial of service DoS vulnerability. This...

8.6CVSS8.6AI score0.00649EPSS
Exploits0References1
Rows per page
Query Builder