VDB

CVE-2017-3885

CVE-2017-3885 PUBLISHED CVSS 7.099999904632568 HIGH

A vulnerability in the detection engine reassembly of Secure Sockets Layer (SSL) packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition because the Snort process consumes a high level of CPU resources. Affected Products: This vulnerability affects Cisco Firepower System Software running software releases 6.0.0, 6.1.0, 6.2.0, or 6.2.1 when the device is configured with an SSL policy that has at least one rule specifying traffic decryption. More Information: CSCvc58563. Known Affected Releases: 6.0.0 6.1.0 6.2.0 6.2.1.

EPSS 0.45% · 64.2th percentile

Risk Scores

CVSS 2.0
7.099999904632568
EPSS Score
0.45%
64.2th percentile

Affected Products

VendorProductVersions
ciscosecure_firewall_management_center6.1.0, 6.2.0, 6.2.1
n/aCisco Firepower Detection EngineCisco Firepower Detection Engine

Exploit Intelligence

Timeline

  • Apr 5, 2017 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Oct 26, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 28, 2022 EPSS Score
  • May 2, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 5, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score
  • Jan 8, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›