CVE-2023-20031

EPSS 0.02%
Published 01.11.2023 18:15:08
Last modified 21.11.2024 07:40:23
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the SSL/TLS certificate handling of Snort 3 Detection Engine integration with Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the Snort 3 detection engine to restart. This vulnerability is due to a logic error that occurs when an SSL/TLS certificate that is under load is accessed when it is initiating an SSL connection. Under specific, time-based constraints, an attacker could exploit this vulnerability by sending a high rate of SSL/TLS connection requests to be inspected by the Snort 3 detection engine on an affected device. A successful exploit could allow the attacker to cause the Snort 3 detection engine to reload, resulting in either a bypass or a denial of service (DoS) condition, depending on device configuration. The Snort detection engine will restart automatically. No manual intervention is required.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Firepower Threat Defense Version6.7.0

Cisco ≫ Firepower Threat Defense Version6.7.0.1

Cisco ≫ Firepower Threat Defense Version6.7.0.2

Cisco ≫ Firepower Threat Defense Version6.7.0.3

Cisco ≫ Firepower Threat Defense Version7.0.0

Cisco ≫ Firepower Threat Defense Version7.0.0.1

Cisco ≫ Firepower Threat Defense Version7.0.1

Cisco ≫ Firepower Threat Defense Version7.0.1.1

Cisco ≫ Firepower Threat Defense Version7.0.2

Cisco ≫ Firepower Threat Defense Version7.0.2.1

Cisco ≫ Firepower Threat Defense Version7.0.3

Cisco ≫ Firepower Threat Defense Version7.0.4

Cisco ≫ Firepower Threat Defense Version7.0.5

Cisco ≫ Firepower Threat Defense Version7.2.0

Cisco ≫ Firepower Threat Defense Version7.2.0.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.02%	0.022

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.4	2.2	2.7	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L
psirt@cisco.com	4	2.2	1.4	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

CWE-244 Improper Clearing of Heap Memory Before Release ('Heap Inspection')

Using realloc() to resize buffers that store sensitive information can leave the sensitive information exposed to attack, because it is not removed from memory.

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3-8U4HHxH8

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2023-20031

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-20031

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-20031

EUVD