CVE-2017-3887

CVE Database · CVE-2017-3887

CVE-2017-3887

· N/AModified

CVSS v3.1

N/A

EPSS

1.27%

Published

Apr 7, 2017

Modified

May 12, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the detection engine that handles Secure Sockets Layer (SSL) packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition because the Snort process unexpectedly restarts. This vulnerability affects Cisco Firepower System Software prior to the first fixed release when it is configured with an SSL Decrypt-Resign policy. More Information: CSCvb62292. Known Affected Releases: 6.0.1 6.1.0 6.2.0. Known Fixed Releases: 6.2.0 6.1.0.2.

Weaknesses (CWE)

CWE-755

Affected Products (3)

cisco · firepower_threat_defensevulnerable

References (4)

http://www.securityfocus.com/bid/97453

Third Party AdvisoryVDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-cfpw1

Vendor Advisory

http://www.securityfocus.com/bid/97453

Third Party AdvisoryVDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-cfpw1

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs