VDB

GCVE-110-NCSC-2024-233

GCVE-110-NCSC-2024-233
Advisory PublishedCVSS 5.8/10
Vulnetix · Advisory published May 23, 2024
Cisco heeft kwetsbaarheden verholpen in ASA, Firepower en Snort.

Weaknesses (CWE)

CWE-264-CWE-290Authentication Bypass by SpoofingCWE-681Incorrect Conversion between Numeric TypesCWE-284Improper Access ControlCWE-436Interpretation ConflictCWE-862Missing AuthorizationCWE-89Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Risk Scores

CVSS 3.1
5.8/10
Medium · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Affected Products

VendorProductVersionsPlatforms
ciscocisco_utd_snort_ips_engine_software
ciscocisco_firepower_threat_defense_software
ciscocisco_adaptive_security_appliance__asa__software
ciscoadaptive_security_appliance
ciscocisco_firepower_management_center
ciscoadaptive_security_appliance_software
ciscofirepower_threat_defense

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

72,409 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›