VDB

CVE-2022-20767

CVE-2022-20767 PUBLISHED CVSS 8.600000381469727 HIGH

A vulnerability in the Snort rule evaluation function of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper handling of the DNS reputation enforcement rule. An attacker could exploit this vulnerability by sending crafted UDP packets through an affected device to force a buildup of UDP connections. A successful exploit could allow the attacker to cause traffic that is going through the affected device to be dropped, resulting in a DoS condition. Note: This vulnerability only affects Cisco FTD devices that are running Snort 3.

EPSS 1.35% · 80.5th percentile

Risk Scores

CVSS 3.1
8.600000381469727
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
EPSS Score
1.35%
80.5th percentile

Affected Products

VendorProductVersions
ciscofirepower_threat_defense0, 7.1.0
CiscoCisco Firepower Threat Defense Softwaren/a

Exploit Intelligence

Timeline

  • Apr 27, 2022 CVE Published
  • May 3, 2022 EPSS Score
  • Jun 22, 2022 EPSS Score
  • Aug 11, 2022 EPSS Score
  • Nov 18, 2022 EPSS Score
  • Jan 7, 2023 EPSS Score
  • Feb 25, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 16, 2023 EPSS Score
  • Jun 4, 2023 EPSS Score
  • Sep 12, 2023 EPSS Score
  • Oct 31, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›