Lucene search

K
CiscoFirepower Threat Defense*

152 matches found

CVE
CVE
added 2023/10/10 2:15 p.m.4408 views

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

7.5CVSS8AI score0.94434EPSS
CVE
CVE
added 2020/07/22 8:15 p.m.1406 views

CVE-2020-3452

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct directory traversal attacks and read sensitive files on a targeted system. The vulnerability...

7.5CVSS7.5AI score0.94452EPSS
CVE
CVE
added 2018/06/07 12:29 p.m.1179 views

CVE-2018-0296

A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. It is also possible on certain software releases that the ASA wil...

7.5CVSS7.8AI score0.94436EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.1126 views

CVE-2020-3580

Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the web services interface of ...

6.1CVSS6.4AI score0.93247EPSS
CVE
CVE
added 2020/05/06 5:15 p.m.290 views

CVE-2020-3259

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to retrieve memory contents on an affected device, which could lead to the disclosure of confidential i...

7.5CVSS7.7AI score0.54329EPSS
CVE
CVE
added 2020/05/06 5:15 p.m.253 views

CVE-2020-3187

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct directory traversal attacks and obtain read and delete access to sensitive files on a target...

9.1CVSS8.9AI score0.94072EPSS
CVE
CVE
added 2022/05/03 4:15 a.m.241 views

CVE-2022-20759

A vulnerability in the web services interface for remote access VPN features of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, but unprivileged, remote attacker to elevate privileges to level 15. This vulnerability is...

8.8CVSS8.9AI score0.0613EPSS
CVE
CVE
added 2022/05/03 4:15 a.m.152 views

CVE-2022-20746

A vulnerability in the TCP proxy functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition. This vulnerability is due to improper handling of TCP flows. An attacker could exploit this vulnerability b...

8.6CVSS7.9AI score0.00912EPSS
CVE
CVE
added 2022/05/03 4:15 a.m.131 views

CVE-2022-20757

A vulnerability in the connection handling function in Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper traffic handling when platform limits are re...

8.6CVSS7.9AI score0.01227EPSS
CVE
CVE
added 2022/04/21 7:15 p.m.116 views

CVE-2022-20795

A vulnerability in the implementation of the Datagram TLS (DTLS) protocol in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause high CPU utilization, resulting in a denial of service (DoS) condi...

7.5CVSS6.4AI score0.002EPSS
CVE
CVE
added 2022/05/03 4:15 a.m.115 views

CVE-2022-20729

A vulnerability in CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to inject XML into the command parser. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by including crafted input in commands...

7.8CVSS5.9AI score0.00149EPSS
CVE
CVE
added 2022/05/03 4:15 a.m.114 views

CVE-2022-20760

A vulnerability in the DNS inspection handler of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service condition (DoS) on an affected device. This vulnerability is due to a lack of pr...

8.6CVSS7.8AI score0.02573EPSS
CVE
CVE
added 2022/05/03 4:15 a.m.111 views

CVE-2022-20745

A vulnerability in the web services interface for remote access VPN features of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due ...

8.6CVSS7.9AI score0.01159EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.111 views

CVE-2022-20927

A vulnerability in the SSL/TLS client of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper memory ...

7.7CVSS6.4AI score0.00111EPSS
CVE
CVE
added 2022/05/03 4:15 a.m.110 views

CVE-2022-20742

A vulnerability in an IPsec VPN library of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to read or modify data within an IPsec IKEv2 VPN tunnel. This vulnerability is due to an improper implementat...

7.4CVSS7.2AI score0.00132EPSS
CVE
CVE
added 2022/05/03 4:15 a.m.105 views

CVE-2022-20715

A vulnerability in the remote access SSL VPN features of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due t...

8.6CVSS8.5AI score0.01456EPSS
CVE
CVE
added 2023/03/23 5:15 p.m.104 views

CVE-2023-20107

A vulnerability in the deterministic random bit generator (DRBG), also known as pseudorandom number generator (PRNG), in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software for Cisco ASA 5506-X, ASA 5508-X, and ASA 5516-X Firewalls could allow an unaut...

7.5CVSS5.6AI score0.00323EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.101 views

CVE-2020-3578

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured access rule and access parts of the WebVPN portal that are supposed to be blocke...

6.5CVSS5.8AI score0.00183EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.100 views

CVE-2020-3563

A vulnerability in the packet processing functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to inefficient memory management. An attacker could ex...

8.6CVSS8.4AI score0.01156EPSS
CVE
CVE
added 2022/05/03 4:15 a.m.99 views

CVE-2022-20767

A vulnerability in the Snort rule evaluation function of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper handling of the DNS reputation enforcement ...

8.6CVSS7.7AI score0.01349EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.97 views

CVE-2020-3582

Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the web services interface of ...

6.1CVSS6.1AI score0.00238EPSS
CVE
CVE
added 2021/10/27 7:15 p.m.93 views

CVE-2021-40114

Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource manageme...

7.8CVSS6.9AI score0.01769EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.91 views

CVE-2020-3554

A vulnerability in the TCP packet processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a memory...

8.6CVSS7.5AI score0.00254EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.90 views

CVE-2020-3529

A vulnerability in the SSL VPN negotiation process for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vu...

8.6CVSS7.9AI score0.01311EPSS
CVE
CVE
added 2020/02/26 5:15 p.m.88 views

CVE-2020-3166

A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to read or write arbitrary files on the underlying operating system (OS). The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by including crafted argum...

6.7CVSS5.1AI score0.00171EPSS
CVE
CVE
added 2018/04/19 8:29 p.m.87 views

CVE-2018-0231

A vulnerability in the Transport Layer Security (TLS) library of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of the affected device, resulting in a denial of service (DoS) cond...

8.6CVSS8.6AI score0.00488EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.86 views

CVE-2020-3583

Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the web services interface of ...

6.1CVSS6.1AI score0.00299EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.85 views

CVE-2020-3572

A vulnerability in the SSL/TLS session handler of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a memo...

8.6CVSS8.4AI score0.01858EPSS
CVE
CVE
added 2021/01/13 10:15 p.m.85 views

CVE-2021-1224

Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect detection of the HTTP pay...

5.8CVSS5.7AI score0.00486EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.84 views

CVE-2020-3299

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP packets used in chunked responses. An attacker cou...

5.8CVSS5.9AI score0.00293EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.84 views

CVE-2020-3528

A vulnerability in the OSPF Version 2 (OSPFv2) implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition...

8.6CVSS8AI score0.00641EPSS
CVE
CVE
added 2022/08/10 5:15 p.m.84 views

CVE-2022-20866

A vulnerability in the handling of RSA keys on devices running Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to retrieve an RSA private key. This vulnerability is due to a logic error when the RSA k...

7.5CVSS7.6AI score0.23852EPSS
CVE
CVE
added 2021/10/27 7:15 p.m.83 views

CVE-2021-40117

A vulnerability in SSL/TLS message handler for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability exists because inc...

8.6CVSS7.8AI score0.00837EPSS
CVE
CVE
added 2018/04/19 8:29 p.m.80 views

CVE-2018-0228

A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause the CPU to increase upwards of 100% utilization, causing a denial of service (DoS) condition on an affected system. The vulnerability is due...

8.6CVSS8.5AI score0.04157EPSS
CVE
CVE
added 2018/11/01 1:0 p.m.80 views

CVE-2018-15454

A vulnerability in the Session Initiation Protocol (SIP) inspection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload or trigger high CPU, resulting in a ...

8.6CVSS8.4AI score0.03321EPSS
CVE
CVE
added 2021/01/13 10:15 p.m.79 views

CVE-2021-1236

Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit th...

5.3CVSS5AI score0.00385EPSS
CVE
CVE
added 2023/11/01 6:15 p.m.79 views

CVE-2023-20083

A vulnerability in ICMPv6 inspection when configured with the Snort 2 detection engine for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the CPU of an affected device to spike to 100 percent, which could stop all traffic processing and result...

8.6CVSS8.4AI score0.00255EPSS
CVE
CVE
added 2021/04/29 6:15 p.m.78 views

CVE-2021-1493

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause a buffer overflow on an affected system. The vulnerability is due to insufficient boundary check...

8.5CVSS7.8AI score0.00623EPSS
CVE
CVE
added 2021/10/27 7:15 p.m.78 views

CVE-2021-34793

A vulnerability in the TCP Normalizer of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software operating in transparent mode could allow an unauthenticated, remote attacker to poison MAC address tables, resulting in a denial of service (DoS) vulnerability. Thi...

8.6CVSS8.4AI score0.00091EPSS
CVE
CVE
added 2019/11/05 8:15 p.m.77 views

CVE-2019-1981

A vulnerability in the normalization functionality of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to insuf...

5.8CVSS5.7AI score0.00405EPSS
CVE
CVE
added 2021/01/13 10:15 p.m.77 views

CVE-2021-1223

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of an HTTP range header. An attacker could exploit this vulnerabilit...

7.5CVSS6.5AI score0.00561EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.76 views

CVE-2020-3436

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to upload arbitrary-sized files to specific folders on an affected device, which could lead to an unexpected dev...

8.6CVSS8.4AI score0.02146EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.76 views

CVE-2020-3561

A vulnerability in the Clientless SSL VPN (WebVPN) of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to inject arbitrary HTTP headers in the responses of the affected system. The vulnerability is due...

4.7CVSS4.9AI score0.00363EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.75 views

CVE-2020-3304

A vulnerability in the web interface of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerabilit...

8.6CVSS8.4AI score0.00498EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.75 views

CVE-2020-3581

Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the web services interface of ...

6.1CVSS6.1AI score0.00238EPSS
CVE
CVE
added 2022/01/11 7:15 p.m.75 views

CVE-2021-1573

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition. This vulnerability is due to improper input validation ...

8.6CVSS7.9AI score0.00183EPSS
CVE
CVE
added 2021/04/29 6:15 p.m.74 views

CVE-2021-1504

Multiple vulnerabilities in Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. These vulnerabilities are due to lack of proper input validati...

8.6CVSS8AI score0.00312EPSS
CVE
CVE
added 2021/10/27 7:15 p.m.74 views

CVE-2021-40118

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition. This vulnerability is due to improper input validation ...

8.6CVSS7.9AI score0.00263EPSS
CVE
CVE
added 2020/05/06 5:15 p.m.73 views

CVE-2020-3315

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured file policies on an affected system. The vulnerability is due to errors in how the Snort detection engine handles specific HTTP respons...

5.8CVSS5.5AI score0.00215EPSS
CVE
CVE
added 2020/10/21 7:15 p.m.73 views

CVE-2020-3533

A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to restart unexpectedly. The vulnerability is due to a lack of sufficient memory manag...

8.6CVSS7.9AI score0.01311EPSS
Total number of security vulnerabilities152