CVE-2024-20351

EPSS 0.56%
Published 23.10.2024 17:15:18
Last modified 11.08.2025 14:31:33
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the TCP/IP traffic handling function of the Snort Detection Engine of Cisco Firepower Threat Defense (FTD) Software and Cisco FirePOWER Services could allow an unauthenticated, remote attacker to cause legitimate network traffic to be dropped, resulting in a denial of service (DoS) condition.

This vulnerability is due to the improper handling of TCP/IP network traffic. An attacker could exploit this vulnerability by sending a large amount of TCP/IP network traffic through the affected device. A successful exploit could allow the attacker to cause the Cisco FTD device to drop network traffic, resulting in a DoS condition. The affected device must be rebooted to resolve the DoS condition.

Affected products Warnungen 0 Metrics 3 CWE 1 References 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Firepower Threat Defense Software Version6.2.3

Cisco ≫ Firepower Threat Defense Software Version6.2.3.1

Cisco ≫ Firepower Threat Defense Software Version6.2.3.2

Cisco ≫ Firepower Threat Defense Software Version6.2.3.3

Cisco ≫ Firepower Threat Defense Software Version6.2.3.4

Cisco ≫ Firepower Threat Defense Software Version6.2.3.5

Cisco ≫ Firepower Threat Defense Software Version6.2.3.6

Cisco ≫ Firepower Threat Defense Software Version6.2.3.7

Cisco ≫ Firepower Threat Defense Software Version6.2.3.8

Cisco ≫ Firepower Threat Defense Software Version6.2.3.9

Cisco ≫ Firepower Threat Defense Software Version6.2.3.10

Cisco ≫ Firepower Threat Defense Software Version6.2.3.11

Cisco ≫ Firepower Threat Defense Software Version6.2.3.12

Cisco ≫ Firepower Threat Defense Software Version6.2.3.13

Cisco ≫ Firepower Threat Defense Software Version6.2.3.14

Cisco ≫ Firepower Threat Defense Software Version6.2.3.15

Cisco ≫ Firepower Threat Defense Software Version6.2.3.16

Cisco ≫ Firepower Threat Defense Software Version6.2.3.17

Cisco ≫ Firepower Threat Defense Software Version6.2.3.18

Cisco ≫ Firepower Threat Defense Software Version6.4.0

Cisco ≫ Firepower Threat Defense Software Version6.4.0.1

Cisco ≫ Firepower Threat Defense Software Version6.4.0.2

Cisco ≫ Firepower Threat Defense Software Version6.4.0.3

Cisco ≫ Firepower Threat Defense Software Version6.4.0.4

Cisco ≫ Firepower Threat Defense Software Version6.4.0.5

Cisco ≫ Firepower Threat Defense Software Version6.4.0.6

Cisco ≫ Firepower Threat Defense Software Version6.4.0.7

Cisco ≫ Firepower Threat Defense Software Version6.4.0.8

Cisco ≫ Firepower Threat Defense Software Version6.4.0.9

Cisco ≫ Firepower Threat Defense Software Version6.4.0.10

Cisco ≫ Firepower Threat Defense Software Version6.4.0.11

Cisco ≫ Firepower Threat Defense Software Version6.4.0.12

Cisco ≫ Firepower Threat Defense Software Version6.4.0.13

Cisco ≫ Firepower Threat Defense Software Version6.4.0.14

Cisco ≫ Firepower Threat Defense Software Version6.4.0.15

Cisco ≫ Firepower Threat Defense Software Version6.4.0.16

Cisco ≫ Firepower Threat Defense Software Version6.4.0.17

Cisco ≫ Firepower Threat Defense Software Version6.4.0.18

Cisco ≫ Firepower Threat Defense Software Version6.6.0

Cisco ≫ Firepower Threat Defense Software Version6.6.0.1

Cisco ≫ Firepower Threat Defense Software Version6.6.1

Cisco ≫ Firepower Threat Defense Software Version6.6.3

Cisco ≫ Firepower Threat Defense Software Version6.6.4

Cisco ≫ Firepower Threat Defense Software Version6.6.5

Cisco ≫ Firepower Threat Defense Software Version6.6.5.1

Cisco ≫ Firepower Threat Defense Software Version6.6.5.2

Cisco ≫ Firepower Threat Defense Software Version6.6.7

Cisco ≫ Firepower Threat Defense Software Version6.6.7.1

Cisco ≫ Firepower Threat Defense Software Version6.6.7.2

Cisco ≫ Firepower Threat Defense Software Version6.7.0

Cisco ≫ Firepower Threat Defense Software Version6.7.0.1

Cisco ≫ Firepower Threat Defense Software Version6.7.0.2

Cisco ≫ Firepower Threat Defense Software Version6.7.0.3

Cisco ≫ Firepower Threat Defense Software Version7.0.0

Cisco ≫ Firepower Threat Defense Software Version7.0.0.1

Cisco ≫ Firepower Threat Defense Software Version7.0.1

Cisco ≫ Firepower Threat Defense Software Version7.0.1.1

Cisco ≫ Firepower Threat Defense Software Version7.0.2

Cisco ≫ Firepower Threat Defense Software Version7.0.2.1

Cisco ≫ Firepower Threat Defense Software Version7.0.3

Cisco ≫ Firepower Threat Defense Software Version7.0.4

Cisco ≫ Firepower Threat Defense Software Version7.0.5

Cisco ≫ Firepower Threat Defense Software Version7.0.6

Cisco ≫ Firepower Threat Defense Software Version7.0.6.1

Cisco ≫ Firepower Threat Defense Software Version7.1.0

Cisco ≫ Firepower Threat Defense Software Version7.1.0.1

Cisco ≫ Firepower Threat Defense Software Version7.1.0.2

Cisco ≫ Firepower Threat Defense Software Version7.1.0.3

Cisco ≫ Firepower Threat Defense Software Version7.2.0

Cisco ≫ Firepower Threat Defense Software Version7.2.0.1

Cisco ≫ Firepower Threat Defense Software Version7.2.1

Cisco ≫ Firepower Threat Defense Software Version7.2.2

Cisco ≫ Firepower Threat Defense Software Version7.2.3

Cisco ≫ Firepower Threat Defense Software Version7.2.4

Cisco ≫ Firepower Threat Defense Software Version7.2.4.1

Cisco ≫ Firepower Threat Defense Software Version7.2.5

Cisco ≫ Firepower Threat Defense Software Version7.2.5.1

Cisco ≫ Firepower Threat Defense Software Version7.2.5.2

Cisco ≫ Firepower Threat Defense Software Version7.3.0

Cisco ≫ Firepower Threat Defense Software Version7.3.1

Cisco ≫ Firepower Threat Defense Software Version7.3.1.1

Cisco ≫ Firepower Threat Defense Software Version7.3.1.2

Cisco ≫ Firepower Threat Defense Software Version7.4.0

Cisco ≫ Firepower Threat Defense Software Version7.4.1

Cisco ≫ Firepower Threat Defense Software Version7.4.1.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.56%	0.674

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
psirt@cisco.com	8.6	3.9	4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-M446vbEO

Broken Link

https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-75300

Vendor Advisory

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-xss-yjj7ZjVq

Broken Link

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sa-ftd-snort-fw-BCJTZPMu

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-20351

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-20351

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-20351

EUVD