VDB
CVE-2026-20027
CVE-2026-20027
PUBLISHED
CVSS 5.300000190734863 MEDIUM
Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC requests that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to leak sensitive information or to restart, resulting in an interruption of packet inspection. This vulnerability is due to an error in buffer handling logic when processing DCE/RPC requests, which can result in a buffer out-of-bounds read. An attacker could exploit this vulnerability by sending a large number of DCE/RPC requests through an established connection that is inspected by Snort 3. A successful exploit could allow the attacker to obtain sensitive information in the Snort 3 data stream.
EPSS 0.04% · 13.4th percentile
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.04%
13.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Cisco UTD SNORT IPS Engine Software | 17.18.2, 17.18.2, * |
| Cisco | Cisco Secure Firewall Threat Defense (FTD) Software | 7.0.1, 7.1.0, 7.0.1.1 |
Exploit Intelligence
- CIRCL seen: CVE-2026-20027 (circl-sighting)
- CIRCL seen: CVE-2026-20027 (circl-sighting)
- CIRCL seen: CVE-2026-20027 (circl-sighting)
- CIRCL seen: CVE-2026-20027 (circl-sighting)
- cisco-sa-snort3-dcerpc-vulns-J9HNF4tH (circl)
Timeline
- Jan 7, 2026 CVE Published
- Jan 7, 2026 PoC Published
- Jan 8, 2026 EPSS Score
- Jan 10, 2026 PoC Published
- Jan 11, 2026 EPSS Score
- Jan 14, 2026 EPSS Score
- Jan 18, 2026 EPSS Score
- Jan 21, 2026 EPSS Score
- Jan 24, 2026 EPSS Score
- Jan 27, 2026 EPSS Score
- Jan 28, 2026 PoC Published
- Jan 30, 2026 EPSS Score