Lucene search

K
CiscoFirepower Threat Defense

13 matches found

CVE
CVE
added 2022/11/15 9:15 p.m.111 views

CVE-2022-20927

A vulnerability in the SSL/TLS client of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper memory ...

7.7CVSS6.4AI score0.00111EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.89 views

CVE-2022-20826

A vulnerability in the secure boot implementation of Cisco Secure Firewalls 3100 Series that are running Cisco Adaptive Security Appliance (ASA) Software or Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated attacker with physical access to the device to bypass the secure ...

6.8CVSS6.7AI score0.00021EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.88 views

CVE-2022-20947

A vulnerability in dynamic access policies (DAP) functionality of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. Thi...

8.6CVSS7.5AI score0.0012EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.75 views

CVE-2022-20924

A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulne...

7.7CVSS6.4AI score0.00096EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.68 views

CVE-2022-20934

A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software and Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as root. This vulnerability is due to improper input validation for specific CLI commands...

6.7CVSS6.9AI score0.00036EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.65 views

CVE-2022-20928

A vulnerability in the authentication and authorization flows for VPN connections in Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to establish a connection as a different user. This vulnerability is due ...

5.8CVSS5.8AI score0.00031EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.65 views

CVE-2022-20943

Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service (DoS) condition on an affected device. These vulner...

5.8CVSS6AI score0.00026EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.64 views

CVE-2022-20922

Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service (DoS) condition on an affected device. These vulner...

6.5CVSS6.8AI score0.00026EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.63 views

CVE-2022-20950

A vulnerability in the interaction of SIP and Snort 3 for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the Snort 3 detection engine to restart. This vulnerability is due to a lack of error-checking when SIP bidirectional flows are being insp...

5.8CVSS5.5AI score0.00126EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.60 views

CVE-2022-20854

A vulnerability in the processing of SSH connections of Cisco Firepower Management Center (FMC) and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper...

7.5CVSS7.5AI score0.00102EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.60 views

CVE-2022-20946

A vulnerability in the generic routing encapsulation (GRE) tunnel decapsulation feature of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a memory handling...

8.6CVSS7.5AI score0.00156EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.59 views

CVE-2022-20940

A vulnerability in the TLS handler of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to gain access to sensitive information. This vulnerability is due to improper implementation of countermeasures against a Bleichenbacher attack on a device that uses ...

5.3CVSS5.5AI score0.00088EPSS
CVE
CVE
added 2022/11/15 9:15 p.m.50 views

CVE-2022-20949

A vulnerability in the management web server of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker with high privileges to execute configuration commands on an affected system. This vulnerability exists because access to HTTPS endpoints is not properly restr...

6.5CVSS5.5AI score0.00029EPSS