Firepower Threat Defense@7.0.5 Security Vulnerabilities and Issues — Firepower Threat Defense@7.0.5 CVE List

Lucene search

CiscoFirepower Threat Defense7.0.5

15 matches found

cve•added 2024/04/24 7:15 p.m.•470 views

CVE-2024-20359

A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins and that has been available in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary code...

6CVSS7.3AI score0.00153EPSS

In wild

cve•added 2024/04/24 7:15 p.m.•424 views

CVE-2024-20353

A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition. ...

8.6CVSS8.4AI score0.13803EPSS

In wild

cve•added 2024/05/22 5:16 p.m.•68 views

CVE-2024-20355

A vulnerability in the implementation of SAML 2.0 single sign-on (SSO) for remote access VPN services in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to successfully establish a VPN session on an aff...

5CVSS6.8AI score0.0081EPSS

cve•added 2024/10/23 6:15 p.m.•64 views

CVE-2024-20402

A vulnerability in the SSL VPN feature for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vu...

8.6CVSS8.5AI score0.00329EPSS

cve•added 2024/10/23 6:15 p.m.•59 views

CVE-2024-20495

A vulnerability in the Remote Access VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition on an a...

8.6CVSS8.5AI score0.00111EPSS

cve•added 2024/05/22 5:16 p.m.•57 views

CVE-2024-20261

A vulnerability in the file policy feature that is used to inspect encrypted archive files of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured file policy to block an encrypted archive file. This vulnerability exists because of a l...

5.8CVSS6.9AI score0.00192EPSS

cve•added 2024/10/23 5:15 p.m.•52 views

CVE-2024-20268

A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause an unexpected reload of the device. This vulnerability is due to insu...

7.7CVSS7.4AI score0.00374EPSS

cve•added 2024/10/23 5:15 p.m.•45 views

CVE-2024-20297

A vulnerability in the AnyConnect firewall for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured access control list (ACL) and allow traffic that should have been denied to flow t...

5.8CVSS5.8AI score0.00079EPSS

cve•added 2024/10/23 5:15 p.m.•44 views

CVE-2024-20299

5.8CVSS5.8AI score0.00079EPSS

cve•added 2024/10/23 6:15 p.m.•39 views

CVE-2024-20431

A vulnerability in the geolocation access control feature of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass an access control policy. This vulnerability is due to improper assignment of geolocation data. An attacker could exploit this vulnera...

5.8CVSS5.8AI score0.00072EPSS

cve•added 2024/10/23 6:15 p.m.•37 views

CVE-2024-20382

A vulnerability in the VPN web client services feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a browser that is accessing an affected...

6.1CVSS6AI score0.00064EPSS

cve•added 2024/10/23 6:15 p.m.•37 views

CVE-2024-20407

A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies on an affected system. Devices that are configured with Snort 2 are no...

5.8CVSS5.7AI score0.00117EPSS

cve•added 2024/10/23 6:15 p.m.•37 views

CVE-2024-20408

A vulnerability in the Dynamic Access Policies (DAP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause an affected device to reload unexpectedly. To exploit this vulnerability, an atta...

7.7CVSS7.4AI score0.00085EPSS

cve•added 2024/10/23 6:15 p.m.•34 views

CVE-2024-20384

A vulnerability in the Network Service Group (NSG) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured access control list (ACL) and allow traffic that should be denied t...

5.8CVSS5.8AI score0.00106EPSS

cve•added 2024/10/23 5:15 p.m.•33 views

CVE-2024-20330

A vulnerability in the Snort 2 and Snort 3 TCP and UDP detection engine of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Appliances could allow an unauthenticated, remote attacker to cause memory corruption, which could cause the Snort detection engine to restart une...

8.6CVSS8.6AI score0.00111EPSS