CVE-2023-20071
Severity Score
5.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a flaw in the FTP module of the Snort detection engine. An attacker could exploit this vulnerability by sending crafted FTP traffic through an affected device. A successful exploit could allow the attacker to bypass FTP inspection and deliver a malicious payload.
Varios productos de Cisco se ven afectados por una vulnerabilidad en el motor de detección Snort que podría permitir que un atacante remoto no autenticado omitir las políticas configuradas en un sistema afectado. Esta vulnerabilidad se debe a una falla en el módulo FTP del motor de detección de Snort. Un atacante podría aprovechar esta vulnerabilidad enviando tráfico FTP manipulado a través de un dispositivo afectado. Un exploit exitoso podría permitir al atacante omitir la inspección de FTP y entregar un payload maliciosa.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-10-27 CVE Reserved
- 2023-11-01 CVE Published
- 2023-11-10 EPSS Updated
- 2024-08-02 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-1039: Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | < 6.4.0.17 Search vendor "Cisco" for product "Firepower Threat Defense" and version " < 6.4.0.17" | - |
Affected
| in | Snort Search vendor "Snort" | Snort Search vendor "Snort" for product "Snort" | 2.0 Search vendor "Snort" for product "Snort" and version "2.0" | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 6.5.0 < 7.0.6 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 6.5.0 < 7.0.6" | - |
Affected
| in | Snort Search vendor "Snort" | Snort Search vendor "Snort" for product "Snort" | 2.0 Search vendor "Snort" for product "Snort" and version "2.0" | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 7.1.0 < 7.2.4 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 7.1.0 < 7.2.4" | - |
Affected
| in | Snort Search vendor "Snort" | Snort Search vendor "Snort" for product "Snort" | 2.0 Search vendor "Snort" for product "Snort" and version "2.0" | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 7.3.0 < 7.3.1.2 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 7.3.0 < 7.3.1.2" | - |
Affected
| in | Snort Search vendor "Snort" | Snort Search vendor "Snort" for product "Snort" | 2.0 Search vendor "Snort" for product "Snort" and version "2.0" | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 6.7.0 < 7.0.5 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 6.7.0 < 7.0.5" | - |
Affected
| in | Snort Search vendor "Snort" | Snort Search vendor "Snort" for product "Snort" | < 3.1.32.0 Search vendor "Snort" for product "Snort" and version " < 3.1.32.0" | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 7.1.0 < 7.1.0.3 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 7.1.0 < 7.1.0.3" | - |
Affected
| in | Snort Search vendor "Snort" | Snort Search vendor "Snort" for product "Snort" | < 3.1.32.0 Search vendor "Snort" for product "Snort" and version " < 3.1.32.0" | - |
Safe
|
| Cisco Search vendor "Cisco" | Firepower Threat Defense Search vendor "Cisco" for product "Firepower Threat Defense" | >= 7.2.0 < 7.2.1 Search vendor "Cisco" for product "Firepower Threat Defense" and version " >= 7.2.0 < 7.2.1" | - |
Affected
| in | Snort Search vendor "Snort" | Snort Search vendor "Snort" for product "Snort" | < 3.1.32.0 Search vendor "Snort" for product "Snort" and version " < 3.1.32.0" | - |
Safe
|
| Cisco Search vendor "Cisco" | Cyber Vision Search vendor "Cisco" for product "Cyber Vision" | < 4.1.3 Search vendor "Cisco" for product "Cyber Vision" and version " < 4.1.3" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Unified Threat Defense Search vendor "Cisco" for product "Unified Threat Defense" | >= 17.3 < 17.3.8 Search vendor "Cisco" for product "Unified Threat Defense" and version " >= 17.3 < 17.3.8" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Unified Threat Defense Search vendor "Cisco" for product "Unified Threat Defense" | >= 17.6 < 17.6.6 Search vendor "Cisco" for product "Unified Threat Defense" and version " >= 17.6 < 17.6.6" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Unified Threat Defense Search vendor "Cisco" for product "Unified Threat Defense" | >= 17.9 < 17.9.4 Search vendor "Cisco" for product "Unified Threat Defense" and version " >= 17.9 < 17.9.4" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Unified Threat Defense Search vendor "Cisco" for product "Unified Threat Defense" | >= 17.11 < 17.11.1a Search vendor "Cisco" for product "Unified Threat Defense" and version " >= 17.11 < 17.11.1a" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Unified Threat Defense Search vendor "Cisco" for product "Unified Threat Defense" | >= 17.12 < 17.12.1a Search vendor "Cisco" for product "Unified Threat Defense" and version " >= 17.12 < 17.12.1a" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Meraki Mx Security Appliance Firmware Search vendor "Cisco" for product "Meraki Mx Security Appliance Firmware" | - | - |
Affected
| ||||||