CVE-2020-3283

CVE Database · CVE-2020-3283

CVE-2020-3283

· HIGHModified

CVSS v3.1

8.6

EPSS

1.96%

Published

May 6, 2020

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) handler of Cisco Firepower Threat Defense (FTD) Software when running on the Cisco Firepower 1000 Series platform could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition on an affected device. The vulnerability is due to a communication error between internal functions. An attacker could exploit this vulnerability by sending a crafted SSL/TLS message to an affected device. A successful exploit could allow the attacker to cause a buffer underrun, which leads to a crash. The crash causes the affected device to reload.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Weaknesses (CWE)

CWE-119CWE-787

Affected Products (41)

cisco · firepower_threat_defense (up to 6.4.0.9)vulnerable

cisco · firepower_1010

cisco · firepower_1020

cisco · firepower_1030

cisco · firepower_1040

cisco · asa_5505_firmwarevulnerable

cisco · asa_5505

cisco · asa_5510_firmwarevulnerable

cisco · asa_5510

cisco · asa_5512-x_firmware

References (2)

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-tls-dos-4v5nmWtZ

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-tls-dos-4v5nmWtZ

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs