CVE-2020-3188
Cisco Firepower Threat Defense Software Management Interface Denial of Service Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability in how Cisco Firepower Threat Defense (FTD) Software handles session timeouts for management connections could allow an unauthenticated, remote attacker to cause a buildup of remote management connections to an affected device, which could result in a denial of service (DoS) condition. The vulnerability exists because the default session timeout period for specific to-the-box remote management connections is too long. An attacker could exploit this vulnerability by sending a large and sustained number of crafted remote management connections to an affected device, resulting in a buildup of those connections over time. A successful exploit could allow the attacker to cause the remote management interface or Cisco Firepower Device Manager (FDM) to stop responding and cause other management functions to go offline, resulting in a DoS condition. The user traffic that is flowing through the device would not be affected, and the DoS condition would be isolated to remote management only.
Una vulnerabilidad en como el Cisco Firepower Threat Defense (FTD) Software maneja los tiempos de espera de sesión para las conexiones de administración, podría permitir a un atacante remoto no autenticado causar una acumulación de conexiones de administración remota en un dispositivo afectado, lo que podría resultar en una condición de denegación de servicio (DoS). La vulnerabilidad se presenta porque el período de tiempo de espera de la sesión predeterminada para conexiones de administración remota específicas es demasiado largo. Un atacante podría explotar esta vulnerabilidad mediante el envío de un número grande y sostenido de conexiones de administración remota diseñadas sobre un dispositivo afectado, resultando en una acumulación de esas conexiones sobre el tiempo. Una explotación con éxito podría permitir a un atacante causar que la interfaz de administración remota o el Cisco Firepower Device Manager (FDM) dejen de responder y cause que otras funciones de administración se desconecten, resultando en una condición DoS. El tráfico del usuario que fluye a través del dispositivo no estaría afectado, y la condición DoS estaría aislada para la administración remota solamente.
CVSS Scores
SSVC
- Decision:Attend
Timeline
- 2019-12-12 CVE Reserved
- 2020-05-06 CVE Published
- 2023-05-10 EPSS Updated
- 2024-11-15 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-399: Resource Management Errors
- CWE-613: Insufficient Session Expiration
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Cisco Search vendor "Cisco" | Asa 5505 Firmware Search vendor "Cisco" for product "Asa 5505 Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5505 Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5505 Search vendor "Cisco" for product "Asa 5505" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5505 Firmware Search vendor "Cisco" for product "Asa 5505 Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5505 Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5505 Search vendor "Cisco" for product "Asa 5505" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5510 Firmware Search vendor "Cisco" for product "Asa 5510 Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5510 Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5510 Search vendor "Cisco" for product "Asa 5510" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5510 Firmware Search vendor "Cisco" for product "Asa 5510 Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5510 Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5510 Search vendor "Cisco" for product "Asa 5510" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5512-x Firmware Search vendor "Cisco" for product "Asa 5512-x Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5512-x Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5512-x Search vendor "Cisco" for product "Asa 5512-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5512-x Firmware Search vendor "Cisco" for product "Asa 5512-x Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5512-x Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5512-x Search vendor "Cisco" for product "Asa 5512-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5515-x Firmware Search vendor "Cisco" for product "Asa 5515-x Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5515-x Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5515-x Search vendor "Cisco" for product "Asa 5515-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5515-x Firmware Search vendor "Cisco" for product "Asa 5515-x Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5515-x Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5515-x Search vendor "Cisco" for product "Asa 5515-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5520 Firmware Search vendor "Cisco" for product "Asa 5520 Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5520 Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5520 Search vendor "Cisco" for product "Asa 5520" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5520 Firmware Search vendor "Cisco" for product "Asa 5520 Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5520 Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5520 Search vendor "Cisco" for product "Asa 5520" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5525-x Firmware Search vendor "Cisco" for product "Asa 5525-x Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5525-x Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5525-x Search vendor "Cisco" for product "Asa 5525-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5525-x Firmware Search vendor "Cisco" for product "Asa 5525-x Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5525-x Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5525-x Search vendor "Cisco" for product "Asa 5525-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5540 Firmware Search vendor "Cisco" for product "Asa 5540 Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5540 Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5540 Search vendor "Cisco" for product "Asa 5540" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5540 Firmware Search vendor "Cisco" for product "Asa 5540 Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5540 Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5540 Search vendor "Cisco" for product "Asa 5540" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5545-x Firmware Search vendor "Cisco" for product "Asa 5545-x Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5545-x Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5545-x Search vendor "Cisco" for product "Asa 5545-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5545-x Firmware Search vendor "Cisco" for product "Asa 5545-x Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5545-x Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5545-x Search vendor "Cisco" for product "Asa 5545-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5550 Firmware Search vendor "Cisco" for product "Asa 5550 Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5550 Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5550 Search vendor "Cisco" for product "Asa 5550" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5550 Firmware Search vendor "Cisco" for product "Asa 5550 Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5550 Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5550 Search vendor "Cisco" for product "Asa 5550" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5555-x Firmware Search vendor "Cisco" for product "Asa 5555-x Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5555-x Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5555-x Search vendor "Cisco" for product "Asa 5555-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5555-x Firmware Search vendor "Cisco" for product "Asa 5555-x Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5555-x Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5555-x Search vendor "Cisco" for product "Asa 5555-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5580 Firmware Search vendor "Cisco" for product "Asa 5580 Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5580 Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5580 Search vendor "Cisco" for product "Asa 5580" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5580 Firmware Search vendor "Cisco" for product "Asa 5580 Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5580 Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5580 Search vendor "Cisco" for product "Asa 5580" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5585-x Firmware Search vendor "Cisco" for product "Asa 5585-x Firmware" | 9.8\(3\) Search vendor "Cisco" for product "Asa 5585-x Firmware" and version "9.8\(3\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5585-x Search vendor "Cisco" for product "Asa 5585-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Asa 5585-x Firmware Search vendor "Cisco" for product "Asa 5585-x Firmware" | 101.6\(1.96\) Search vendor "Cisco" for product "Asa 5585-x Firmware" and version "101.6\(1.96\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5585-x Search vendor "Cisco" for product "Asa 5585-x" | - | - |
Safe
|
Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 6.4.0 < 6.4.0.9 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 6.4.0 < 6.4.0.9" | - |
Affected
| ||||||
Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 6.5.0 < 6.5.0.5 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 6.5.0 < 6.5.0.5" | - |
Affected
|