CVE-2023-20071

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a flaw in the FTP module of the Snort detection engine. An attacker could exploit this vulnerability by sending crafted FTP traffic through an affected device. A successful exploit could allow the attacker to bypass FTP inspection and deliver a malicious payload.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.8 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
ciscoCNA
5.8 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 4%
VendorProductVersion
ciscofirepower_threat_defense
𝑥
< 6.4.0.17
ciscofirepower_threat_defense
6.5.0 ≤
𝑥
< 7.0.6
ciscofirepower_threat_defense
7.1.0 ≤
𝑥
< 7.2.4
ciscofirepower_threat_defense
7.3.0 ≤
𝑥
< 7.3.1.2
ciscofirepower_threat_defense
6.7.0 ≤
𝑥
< 7.0.5
ciscofirepower_threat_defense
7.1.0 ≤
𝑥
< 7.1.0.3
ciscofirepower_threat_defense
7.2.0 ≤
𝑥
< 7.2.1
ciscocyber_vision
𝑥
< 4.1.3
ciscounified_threat_defense
17.3 ≤
𝑥
< 17.3.8
ciscounified_threat_defense
17.6 ≤
𝑥
< 17.6.6
ciscounified_threat_defense
17.9 ≤
𝑥
< 17.9.4
ciscounified_threat_defense
17.11 ≤
𝑥
< 17.11.1a
ciscounified_threat_defense
17.12 ≤
𝑥
< 17.12.1a
ciscomeraki_mx_security_appliance_firmware
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM