CVE-2020-3283
Cisco Firepower 1000 Series SSL/TLS Denial of Service Vulnerability
Severity Score
8.6
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) handler of Cisco Firepower Threat Defense (FTD) Software when running on the Cisco Firepower 1000 Series platform could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition on an affected device. The vulnerability is due to a communication error between internal functions. An attacker could exploit this vulnerability by sending a crafted SSL/TLS message to an affected device. A successful exploit could allow the attacker to cause a buffer underrun, which leads to a crash. The crash causes the affected device to reload.
Una vulnerabilidad en el manejador de Secure Sockets Layer (SSL)/Transport Layer Security (TLS) del Cisco Firepower Threat Defense (FTD) Software cuando se ejecuta en la plataforma Cisco Firepower 1000 Series, podría permitir a un atacante remoto no autenticado desencadenar una denegación de servicio ( DoS) sobre un dispositivo afectado. La vulnerabilidad es debido a un error de comunicación entre funciones internas. Un atacante podría explotar esta vulnerabilidad mediante el envío de un mensaje SSL/TLS diseñado hacia un dispositivo afectado. Una explotación con éxito podría permitir a un atacante causar una subdesbordamiento del búfer, que conlleva a un bloqueo. El bloqueo causa que el dispositivo afectado se sobrecargue.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2019-12-12 CVE Reserved
- 2020-05-06 CVE Published
- 2023-03-07 EPSS Updated
- 2024-09-17 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
- CWE-787: Out-of-bounds Write
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 6.4.0 < 6.4.0.9 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 6.4.0 < 6.4.0.9" | - |
Affected
| in | Cisco Search vendor "Cisco" | Firepower 1010 Search vendor "Cisco" for product "Firepower 1010" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 6.4.0 < 6.4.0.9 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 6.4.0 < 6.4.0.9" | - |
Affected
| in | Cisco Search vendor "Cisco" | Firepower 1020 Search vendor "Cisco" for product "Firepower 1020" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 6.4.0 < 6.4.0.9 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 6.4.0 < 6.4.0.9" | - |
Affected
| in | Cisco Search vendor "Cisco" | Firepower 1030 Search vendor "Cisco" for product "Firepower 1030" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 6.4.0 < 6.4.0.9 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 6.4.0 < 6.4.0.9" | - |
Affected
| in | Cisco Search vendor "Cisco" | Firepower 1040 Search vendor "Cisco" for product "Firepower 1040" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5505 Firmware Search vendor "Cisco" for product "Asa 5505 Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5505 Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5505 Search vendor "Cisco" for product "Asa 5505" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5505 Firmware Search vendor "Cisco" for product "Asa 5505 Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5505 Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5505 Search vendor "Cisco" for product "Asa 5505" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5510 Firmware Search vendor "Cisco" for product "Asa 5510 Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5510 Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5510 Search vendor "Cisco" for product "Asa 5510" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5510 Firmware Search vendor "Cisco" for product "Asa 5510 Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5510 Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5510 Search vendor "Cisco" for product "Asa 5510" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5512-x Firmware Search vendor "Cisco" for product "Asa 5512-x Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5512-x Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5512-x Search vendor "Cisco" for product "Asa 5512-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5512-x Firmware Search vendor "Cisco" for product "Asa 5512-x Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5512-x Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5512-x Search vendor "Cisco" for product "Asa 5512-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5515-x Firmware Search vendor "Cisco" for product "Asa 5515-x Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5515-x Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5515-x Search vendor "Cisco" for product "Asa 5515-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5515-x Firmware Search vendor "Cisco" for product "Asa 5515-x Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5515-x Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5515-x Search vendor "Cisco" for product "Asa 5515-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5520 Firmware Search vendor "Cisco" for product "Asa 5520 Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5520 Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5520 Search vendor "Cisco" for product "Asa 5520" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5520 Firmware Search vendor "Cisco" for product "Asa 5520 Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5520 Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5520 Search vendor "Cisco" for product "Asa 5520" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5525-x Firmware Search vendor "Cisco" for product "Asa 5525-x Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5525-x Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5525-x Search vendor "Cisco" for product "Asa 5525-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5525-x Firmware Search vendor "Cisco" for product "Asa 5525-x Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5525-x Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5525-x Search vendor "Cisco" for product "Asa 5525-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5540 Firmware Search vendor "Cisco" for product "Asa 5540 Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5540 Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5540 Search vendor "Cisco" for product "Asa 5540" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5540 Firmware Search vendor "Cisco" for product "Asa 5540 Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5540 Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5540 Search vendor "Cisco" for product "Asa 5540" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5545-x Firmware Search vendor "Cisco" for product "Asa 5545-x Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5545-x Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5545-x Search vendor "Cisco" for product "Asa 5545-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5545-x Firmware Search vendor "Cisco" for product "Asa 5545-x Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5545-x Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5545-x Search vendor "Cisco" for product "Asa 5545-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5550 Firmware Search vendor "Cisco" for product "Asa 5550 Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5550 Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5550 Search vendor "Cisco" for product "Asa 5550" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5550 Firmware Search vendor "Cisco" for product "Asa 5550 Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5550 Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5550 Search vendor "Cisco" for product "Asa 5550" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5555-x Firmware Search vendor "Cisco" for product "Asa 5555-x Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5555-x Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5555-x Search vendor "Cisco" for product "Asa 5555-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5555-x Firmware Search vendor "Cisco" for product "Asa 5555-x Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5555-x Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5555-x Search vendor "Cisco" for product "Asa 5555-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5580 Firmware Search vendor "Cisco" for product "Asa 5580 Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5580 Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5580 Search vendor "Cisco" for product "Asa 5580" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5580 Firmware Search vendor "Cisco" for product "Asa 5580 Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5580 Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5580 Search vendor "Cisco" for product "Asa 5580" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5585-x Firmware Search vendor "Cisco" for product "Asa 5585-x Firmware" | 9.12\(2.12\) Search vendor "Cisco" for product "Asa 5585-x Firmware" and version "9.12\(2.12\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5585-x Search vendor "Cisco" for product "Asa 5585-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Asa 5585-x Firmware Search vendor "Cisco" for product "Asa 5585-x Firmware" | 9.13\(0.33\) Search vendor "Cisco" for product "Asa 5585-x Firmware" and version "9.13\(0.33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Asa 5585-x Search vendor "Cisco" for product "Asa 5585-x" | - | - |
Safe
|