8.6

CVE-2022-20947

A vulnerability in dynamic access policies (DAP) functionality of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition.

 This vulnerability is due to improper processing of HostScan data received from the Posture (HostScan) module. An attacker could exploit this vulnerability by sending crafted HostScan data to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.   

    

  https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ftd-dap-dos-GhYZBxDU ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ftd-dap-dos-GhYZBxDU"]

 
 This advisory is part of the November 2022 release of the Cisco ASA, FTD, and FMC Security Advisory Bundled publication.

Data is provided by the National Vulnerability Database (NVD)
CiscoFirepower Threat Defense Version6.1.0
CiscoFirepower Threat Defense Version6.1.0.1
CiscoFirepower Threat Defense Version6.1.0.2
CiscoFirepower Threat Defense Version6.1.0.3
CiscoFirepower Threat Defense Version6.1.0.4
CiscoFirepower Threat Defense Version6.1.0.5
CiscoFirepower Threat Defense Version6.1.0.6
CiscoFirepower Threat Defense Version6.1.0.7
CiscoFirepower Threat Defense Version6.2.0
CiscoFirepower Threat Defense Version6.2.0.1
CiscoFirepower Threat Defense Version6.2.0.2
CiscoFirepower Threat Defense Version6.2.0.3
CiscoFirepower Threat Defense Version6.2.0.4
CiscoFirepower Threat Defense Version6.2.0.5
CiscoFirepower Threat Defense Version6.2.0.6
CiscoFirepower Threat Defense Version6.2.1
CiscoFirepower Threat Defense Version6.2.2
CiscoFirepower Threat Defense Version6.2.2.1
CiscoFirepower Threat Defense Version6.2.2.2
CiscoFirepower Threat Defense Version6.2.2.3
CiscoFirepower Threat Defense Version6.2.2.4
CiscoFirepower Threat Defense Version6.2.2.5
CiscoFirepower Threat Defense Version6.2.3
CiscoFirepower Threat Defense Version6.2.3.1
CiscoFirepower Threat Defense Version6.2.3.2
CiscoFirepower Threat Defense Version6.2.3.3
CiscoFirepower Threat Defense Version6.2.3.4
CiscoFirepower Threat Defense Version6.2.3.5
CiscoFirepower Threat Defense Version6.2.3.6
CiscoFirepower Threat Defense Version6.2.3.7
CiscoFirepower Threat Defense Version6.2.3.8
CiscoFirepower Threat Defense Version6.2.3.9
CiscoFirepower Threat Defense Version6.2.3.10
CiscoFirepower Threat Defense Version6.2.3.11
CiscoFirepower Threat Defense Version6.2.3.12
CiscoFirepower Threat Defense Version6.2.3.13
CiscoFirepower Threat Defense Version6.2.3.14
CiscoFirepower Threat Defense Version6.2.3.15
CiscoFirepower Threat Defense Version6.2.3.16
CiscoFirepower Threat Defense Version6.2.3.17
CiscoFirepower Threat Defense Version6.2.3.18
CiscoFirepower Threat Defense Version6.3.0
CiscoFirepower Threat Defense Version6.3.0.1
CiscoFirepower Threat Defense Version6.3.0.2
CiscoFirepower Threat Defense Version6.3.0.3
CiscoFirepower Threat Defense Version6.3.0.4
CiscoFirepower Threat Defense Version6.3.0.5
CiscoFirepower Threat Defense Version6.4.0
CiscoFirepower Threat Defense Version6.4.0.1
CiscoFirepower Threat Defense Version6.4.0.2
CiscoFirepower Threat Defense Version6.4.0.3
CiscoFirepower Threat Defense Version6.4.0.4
CiscoFirepower Threat Defense Version6.4.0.5
CiscoFirepower Threat Defense Version6.4.0.6
CiscoFirepower Threat Defense Version6.4.0.7
CiscoFirepower Threat Defense Version6.4.0.8
CiscoFirepower Threat Defense Version6.4.0.9
CiscoFirepower Threat Defense Version6.4.0.10
CiscoFirepower Threat Defense Version6.4.0.11
CiscoFirepower Threat Defense Version6.4.0.12
CiscoFirepower Threat Defense Version6.4.0.13
CiscoFirepower Threat Defense Version6.4.0.14
CiscoFirepower Threat Defense Version6.5.0
CiscoFirepower Threat Defense Version6.5.0.1
CiscoFirepower Threat Defense Version6.5.0.2
CiscoFirepower Threat Defense Version6.5.0.3
CiscoFirepower Threat Defense Version6.5.0.4
CiscoFirepower Threat Defense Version6.5.0.5
CiscoFirepower Threat Defense Version6.6.0
CiscoFirepower Threat Defense Version6.6.0.1
CiscoFirepower Threat Defense Version6.6.1
CiscoFirepower Threat Defense Version6.6.3
CiscoFirepower Threat Defense Version6.6.4
CiscoFirepower Threat Defense Version6.6.5
CiscoFirepower Threat Defense Version6.6.5.1
CiscoFirepower Threat Defense Version6.7.0
CiscoFirepower Threat Defense Version6.7.0.1
CiscoFirepower Threat Defense Version6.7.0.2
CiscoFirepower Threat Defense Version6.7.0.3
CiscoFirepower Threat Defense Version7.0.0
CiscoFirepower Threat Defense Version7.0.0.1
CiscoFirepower Threat Defense Version7.0.1
CiscoFirepower Threat Defense Version7.0.1.1
CiscoFirepower Threat Defense Version7.1.0
CiscoFirepower Threat Defense Version7.1.0.1
CiscoFirepower Threat Defense Version7.1.0.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.18% 0.395
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
psirt@cisco.com 8.6 3.9 4
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.