Firepower Threat Defense Security Vulnerabilities and Issues — Firepower Threat Defense CVE List

Lucene search

CiscoFirepower Threat Defense

8 matches found

CVE•added 2018/04/19 8:29 p.m.•87 views

CVE-2018-0231

A vulnerability in the Transport Layer Security (TLS) library of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of the affected device, resulting in a denial of service (DoS) cond...

8.6CVSS8.6AI score0.00488EPSS

CVE•added 2018/04/19 8:29 p.m.•86 views

CVE-2018-0230

A vulnerability in the internal packet-processing functionality of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Security Appliances could allow an unauthenticated, remote attacker to cause an affected device to stop processing traffic, resulting in a denial of servi...

8.6CVSS8.4AI score0.00837EPSS

CVE•added 2018/04/19 8:29 p.m.•80 views

CVE-2018-0228

A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause the CPU to increase upwards of 100% utilization, causing a denial of service (DoS) condition on an affected system. The vulnerability is due...

8.6CVSS8.5AI score0.04157EPSS

CVE•added 2018/04/19 8:29 p.m.•71 views

CVE-2018-0240

Multiple vulnerabilities in the Application Layer Protocol Inspection feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of ser...

8.6CVSS8.5AI score0.01586EPSS

CVE•added 2018/04/19 8:29 p.m.•62 views

CVE-2018-0227

A vulnerability in the Secure Sockets Layer (SSL) Virtual Private Network (VPN) Client Certificate Authentication feature for Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to establish an SSL VPN connection and bypass certain SSL certificate verification st...

7.5CVSS8.1AI score0.01079EPSS

CVE•added 2018/04/19 8:29 p.m.•62 views

CVE-2018-0244

A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a configured file action policy to drop the Server Message Block (SMB) protocol if a malware file is detected. The vulnerability is due to how the SMB protocol handle...

5.8CVSS5.7AI score0.00227EPSS

CVE•added 2018/04/19 8:29 p.m.•47 views

CVE-2018-0243

A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a configured file action policy that is intended to drop the Server Message Block Version 2 (SMB2) and SMB Version 3 (SMB3) protocols if malware is detected. The vuln...

5.8CVSS5.7AI score0.00227EPSS

CVE•added 2018/04/19 8:29 p.m.•46 views

CVE-2018-0254

A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass configured file action policies if an Intelligent Application Bypass (IAB) with a drop percentage threshold is also configured. The vulnerability is due to incorrect ...

5.3CVSS5.3AI score0.00227EPSS