CVE-2022-20927

15.11.2022, 21:15

A vulnerability in the SSL/TLS client of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.

 This vulnerability is due to improper memory management when a device initiates SSL/TLS connections. An attacker could exploit this vulnerability by ensuring that the device will connect to an SSL/TLS server that is using specific encryption parameters. A successful exploit could allow the attacker to cause the affected device to unexpectedly reload, resulting in a DoS condition.

Classic Buffer Overflow

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.7 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
cisco	CNA	7.7 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 30%

Vendor	Product	Version
cisco	adaptive_security_appliance_software	9.13.1
cisco	adaptive_security_appliance_software	9.13.1.2
cisco	adaptive_security_appliance_software	9.13.1.7
cisco	adaptive_security_appliance_software	9.13.1.10
cisco	adaptive_security_appliance_software	9.13.1.12
cisco	adaptive_security_appliance_software	9.13.1.13
cisco	adaptive_security_appliance_software	9.13.1.16
cisco	adaptive_security_appliance_software	9.13.1.19
cisco	adaptive_security_appliance_software	9.13.1.21
cisco	adaptive_security_appliance_software	9.14.1
cisco	adaptive_security_appliance_software	9.14.1.10
cisco	adaptive_security_appliance_software	9.14.1.15
cisco	adaptive_security_appliance_software	9.14.1.19
cisco	adaptive_security_appliance_software	9.14.1.30
cisco	adaptive_security_appliance_software	9.14.2
cisco	adaptive_security_appliance_software	9.14.2.4
cisco	adaptive_security_appliance_software	9.14.2.8
cisco	adaptive_security_appliance_software	9.14.2.13
cisco	adaptive_security_appliance_software	9.14.2.15
cisco	adaptive_security_appliance_software	9.14.3
cisco	adaptive_security_appliance_software	9.14.3.1
cisco	adaptive_security_appliance_software	9.14.3.9
cisco	adaptive_security_appliance_software	9.14.3.11
cisco	adaptive_security_appliance_software	9.14.3.13
cisco	adaptive_security_appliance_software	9.14.3.15
cisco	adaptive_security_appliance_software	9.14.3.18
cisco	adaptive_security_appliance_software	9.15.1
cisco	adaptive_security_appliance_software	9.15.1.1
cisco	adaptive_security_appliance_software	9.15.1.7
cisco	adaptive_security_appliance_software	9.15.1.10
cisco	adaptive_security_appliance_software	9.15.1.15
cisco	adaptive_security_appliance_software	9.15.1.16
cisco	adaptive_security_appliance_software	9.15.1.17
cisco	adaptive_security_appliance_software	9.15.1.21
cisco	firepower_threat_defense	6.5.0 ≤ 𝑥 ≤ 6.5.0.5
cisco	firepower_threat_defense	6.7.0 ≤ 𝑥 ≤ 6.7.0.3
cisco	firepower_threat_defense	6.6.0
cisco	firepower_threat_defense	6.6.0.1
cisco	firepower_threat_defense	6.6.1
cisco	firepower_threat_defense	6.6.3
cisco	firepower_threat_defense	6.6.4
cisco	firepower_threat_defense	6.6.5
cisco	firepower_threat_defense	6.6.5.1
cisco	firepower_services_software_for_asa	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The program copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ssl-client-dos-cCrQPkA