2 matches found
CVE-2018-0455
The CVE-2018-0455 issue affects Cisco Firepower System Software (Detection Engine) with SMBv2/v3 header validation errors that allow unauthenticated remote exploitation to exhaust system memory and disrupt SNORT, potentially blocking traffic forwarding. Affected component: SMB processing in Cisco...
CVE-2018-15443
Cisco Firepower System Software contains a TCP-traffic handling vulnerability in the detection engine that can let an unauthenticated, remote attacker bypass IPS rules inspecting certain TCP traffic. The flaw arises from incorrect TCP retransmission handling and can be exploited by sending a craf...