CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-0244
https://notcve.org/view.php?id=CVE-2018-0244
19 Apr 2018 — A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a configured file action policy to drop the Server Message Block (SMB) protocol if a malware file is detected. The vulnerability is due to how the SMB protocol handles a case in which a large file transfer fails. This case occurs when some pieces of the file are successfully transferred to the remote endpoint, but ultimately the file transfer fails and is reset. An attacker co... • http://www.securityfocus.com/bid/103945 • CWE-693: Protection Mechanism Failure •
CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0CVE-2018-0138
https://notcve.org/view.php?id=CVE-2018-0138
08 Feb 2018 — A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass file policies that are configured to block files transmitted to an affected device via the BitTorrent protocol. The vulnerability exists because the affected software does not detect BitTorrent handshake messages correctly. An attacker could exploit this vulnerability by sending a crafted BitTorrent connection request to an affected device. A successful exploit could allow the... • http://www.securityfocus.com/bid/102978 • CWE-693: Protection Mechanism Failure •
CVSS: 7.8EPSS: 1%CPEs: 11EXPL: 0CVE-2017-6632
https://notcve.org/view.php?id=CVE-2017-6632
22 May 2017 — A vulnerability in the logging configuration of Secure Sockets Layer (SSL) policies for Cisco FirePOWER System Software 5.3.0 through 6.2.2 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to high consumption of system resources. The vulnerability is due to the logging of certain TCP packets by the affected software. An attacker could exploit this vulnerability by sending a flood of crafted TCP packets to an affected device. A successful exploit could allow th... • http://www.securityfocus.com/bid/98523 • CWE-399: Resource Management Errors CWE-400: Uncontrolled Resource Consumption •