Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

fstec логотип

BDU:2024-10826

Опубликовано: 23 окт. 2024
Источник: fstec
CVSS3: 7.7
CVSS2: 6.8
EPSS Низкий

Описание

Уязвимость реализации простого протокола сетевого управления (SNMP) микропрограммного обеспечения межсетевых экранов Cisco Adaptive Security Appliance (ASA) и Cisco Firepower Threat Defense (FTD) связана с неправильной обработкой дополнительных значений. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании

Вендор

Cisco Systems Inc.

Наименование ПО

Adaptive Security Appliance
Firepower Threat Defense

Версия ПО

9.14.1.15 (Adaptive Security Appliance)
9.16.1 (Adaptive Security Appliance)
7.0.0 (Firepower Threat Defense)
7.2.0.1 (Firepower Threat Defense)
9.14.1 (Adaptive Security Appliance)
9.14.1.10 (Adaptive Security Appliance)
9.14.1.19 (Adaptive Security Appliance)
9.14.1.30 (Adaptive Security Appliance)
9.14.2 (Adaptive Security Appliance)
9.14.2.4 (Adaptive Security Appliance)
9.14.2.8 (Adaptive Security Appliance)
9.14.2.13 (Adaptive Security Appliance)
9.14.2.15 (Adaptive Security Appliance)
9.14.3 (Adaptive Security Appliance)
9.14.3.1 (Adaptive Security Appliance)
9.14.3.9 (Adaptive Security Appliance)
9.14.3.13 (Adaptive Security Appliance)
9.14.3.15 (Adaptive Security Appliance)
9.14.3.18 (Adaptive Security Appliance)
9.15.1 (Adaptive Security Appliance)
9.15.1.1 (Adaptive Security Appliance)
9.15.1.7 (Adaptive Security Appliance)
9.15.1.10 (Adaptive Security Appliance)
9.15.1.21 (Adaptive Security Appliance)
6.6.0.1 (Firepower Threat Defense)
6.6.5.1 (Firepower Threat Defense)
6.6.5.2 (Firepower Threat Defense)
7.0.0.1 (Firepower Threat Defense)
7.0.1 (Firepower Threat Defense)
7.0.1.1 (Firepower Threat Defense)
7.0.2 (Firepower Threat Defense)
7.0.2.1 (Firepower Threat Defense)
7.0.3 (Firepower Threat Defense)
7.0.4 (Firepower Threat Defense)
7.1.0.1 (Firepower Threat Defense)
7.1.0.2 (Firepower Threat Defense)
9.14.3.11 (Adaptive Security Appliance)
9.14.4.6 (Adaptive Security Appliance)
9.14.4 (Adaptive Security Appliance)
9.14.4.7 (Adaptive Security Appliance)
9.14.4.12 (Adaptive Security Appliance)
9.15.1.15 (Adaptive Security Appliance)
9.15.1.16 (Adaptive Security Appliance)
9.15.1.17 (Adaptive Security Appliance)
9.16.3 (Adaptive Security Appliance)
9.16.3.3 (Adaptive Security Appliance)
9.16.3.14 (Adaptive Security Appliance)
9.17.1 (Adaptive Security Appliance)
9.17.1.7 (Adaptive Security Appliance)
9.17.1.9 (Adaptive Security Appliance)
9.17.1.10 (Adaptive Security Appliance)
9.17.1.11 (Adaptive Security Appliance)
9.17.1.13 (Adaptive Security Appliance)
9.17.1.15 (Adaptive Security Appliance)
9.18.1 (Adaptive Security Appliance)
9.16.1.28 (Adaptive Security Appliance)
9.16.2 (Adaptive Security Appliance)
9.16.2.3 (Adaptive Security Appliance)
9.16.2.7 (Adaptive Security Appliance)
9.16.2.11 (Adaptive Security Appliance)
9.16.2.13 (Adaptive Security Appliance)
9.16.2.14 (Adaptive Security Appliance)
9.16.3.15 (Adaptive Security Appliance)
9.16.3.19 (Adaptive Security Appliance)
9.16.3.23 (Adaptive Security Appliance)
9.16.4 (Adaptive Security Appliance)
9.16.4.9 (Adaptive Security Appliance)
9.17.1.20 (Adaptive Security Appliance)
9.18.1.3 (Adaptive Security Appliance)
9.18.2 (Adaptive Security Appliance)
9.18.2.5 (Adaptive Security Appliance)
9.18.2.7 (Adaptive Security Appliance)
9.19.1 (Adaptive Security Appliance)
7.0.5 (Firepower Threat Defense)
7.1.0.3 (Firepower Threat Defense)
7.3.1.1 (Firepower Threat Defense)
9.14.1.6 (Adaptive Security Appliance)
9.14.4.13 (Adaptive Security Appliance)
9.14.4.14 (Adaptive Security Appliance)
9.14.4.15 (Adaptive Security Appliance)
9.14.4.17 (Adaptive Security Appliance)
9.14.4.22 (Adaptive Security Appliance)
9.14.4.23 (Adaptive Security Appliance)
9.16.4.14 (Adaptive Security Appliance)
9.16.4.18 (Adaptive Security Appliance)
9.17.1.30 (Adaptive Security Appliance)
9.18.2.8 (Adaptive Security Appliance)
9.18.3 (Adaptive Security Appliance)
9.19.1.5 (Adaptive Security Appliance)
9.19.1.9 (Adaptive Security Appliance)
6.6.7.1 (Firepower Threat Defense)
6.7.0.1 (Firepower Threat Defense)
6.7.0.2 (Firepower Threat Defense)
6.7.0.3 (Firepower Threat Defense)
9.16.4.19 (Adaptive Security Appliance)
9.16.4.27 (Adaptive Security Appliance)
9.18.3.39 (Adaptive Security Appliance)
9.18.3.46 (Adaptive Security Appliance)
9.19.1.12 (Adaptive Security Appliance)
7.0.6 (Firepower Threat Defense)
9.16.4.38 (Adaptive Security Appliance)
9.18.3.53 (Adaptive Security Appliance)
9.18.3.55 (Adaptive Security Appliance)
9.19.1.18 (Adaptive Security Appliance)
7.2.4.1 (Firepower Threat Defense)
9.16.4.39 (Adaptive Security Appliance)
9.16.4.42 (Adaptive Security Appliance)
9.16.4.48 (Adaptive Security Appliance)
9.17.1.33 (Adaptive Security Appliance)
9.18.3.56 (Adaptive Security Appliance)
9.18.4 (Adaptive Security Appliance)
9.18.4.5 (Adaptive Security Appliance)
9.18.4.8 (Adaptive Security Appliance)
9.19.1.22 (Adaptive Security Appliance)
9.19.1.24 (Adaptive Security Appliance)
9.19.1.27 (Adaptive Security Appliance)
9.20.1 (Adaptive Security Appliance)
9.20.1.5 (Adaptive Security Appliance)
9.20.2 (Adaptive Security Appliance)
7.0.6.1 (Firepower Threat Defense)
7.2.5.1 (Firepower Threat Defense)
7.3.1.2 (Firepower Threat Defense)
6.6.7.2 (Firepower Threat Defense)
9.14.4.24 (Adaptive Security Appliance)
7.2.5.2 (Firepower Threat Defense)
7.4.1.1 (Firepower Threat Defense)

Тип ПО

ПО сетевого программно-аппаратного средства
ПО программно-аппаратного средства

Операционные системы и аппаратные платформы

-

Уровень опасности уязвимости

Средний уровень опасности (базовая оценка CVSS 2.0 составляет 6,8)
Высокий уровень опасности (базовая оценка CVSS 3.0 составляет 7,7)

Возможные меры по устранению уязвимости

Использование рекомендаций прозводителя:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-snmp-dos-7TcnzxTU

Статус уязвимости

Подтверждена производителем

Наличие эксплойта

Данные уточняются

Информация об устранении

Уязвимость устранена

Ссылки на источники

Идентификаторы других систем описаний уязвимостей

EPSS

Процентиль: 78%
0.01093
Низкий

7.7 High

CVSS3

6.8 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2024-20268

CVSS3: 7.7
nvd
больше 1 года назад

A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause an unexpected reload of the device. This vulnerability is due to insufficient input validation of SNMP packets. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device using IPv4 or IPv6. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. This vulnerability affects all versions of SNMP (versions 1, 2c, and 3) and requires a valid SNMP community string or valid SNMPv3 user credentials.

github логотип

GHSA-gvjq-f8m6-m457

CVSS3: 7.7
github
больше 1 года назад

A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause an unexpected reload of the device. This vulnerability is due to insufficient input validation of SNMP packets. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device using IPv4 or IPv6. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. This vulnerability affects all versions of SNMP (versions 1, 2c, and 3) and requires a valid SNMP community string or valid SNMPv3 user credentials.

EPSS

Процентиль: 78%
0.01093
Низкий

7.7 High

CVSS3

6.8 Medium

CVSS2