Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-34781

Опубликовано: 27 окт. 2021
Источник: nvd
CVSS3: 8.6
CVSS3: 7.5
CVSS2: 7.1
EPSS Низкий

Описание

A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. This vulnerability is due to a lack of proper error handling when an SSH session fails to be established. An attacker could exploit this vulnerability by sending a high rate of crafted SSH connections to the instance. A successful exploit could allow the attacker to cause resource exhaustion, which causes a DoS condition on the affected device. The device must be manually reloaded to recover.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.3.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.4.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.4.0.13:*:*:*:*:*:*:*
cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.5.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.6.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.7.0.3:*:*:*:*:*:*:*
cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.7.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:7.0.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*
Версия от 6.3.0 (включая) до 6.4.0.13 (исключая)
cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*
Версия от 6.5.0 (включая) до 6.6.5 (исключая)
cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*
Версия от 6.7.0 (включая) до 6.7.0.3 (исключая)
cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*
Версия от 7.0.0 (включая) до 7.0.1 (исключая)
cpe:2.3:a:cisco:sourcefire_defense_center:6.3.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:sourcefire_defense_center:6.4.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:sourcefire_defense_center:6.4.0.13:*:*:*:*:*:*:*
cpe:2.3:a:cisco:sourcefire_defense_center:6.5.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:sourcefire_defense_center:6.6.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:sourcefire_defense_center:6.7.0.3:*:*:*:*:*:*:*
cpe:2.3:a:cisco:sourcefire_defense_center:6.7.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:sourcefire_defense_center:7.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 62%
0.00429
Низкий

8.6 High

CVSS3

7.5 High

CVSS3

7.1 High

CVSS2

Дефекты

CWE-119
CWE-755

Связанные уязвимости

github логотип

GHSA-cg69-5r4f-47q5

github
больше 3 лет назад

A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. This vulnerability is due to a lack of proper error handling when an SSH session fails to be established. An attacker could exploit this vulnerability by sending a high rate of crafted SSH connections to the instance. A successful exploit could allow the attacker to cause resource exhaustion, which causes a DoS condition on the affected device. The device must be manually reloaded to recover.

fstec логотип

BDU:2021-05764

CVSS3: 8.6
fstec
больше 4 лет назад

Уязвимость сервера Secure Shell (SSH) микропрограммного обеспечения межсетевых экранов Cisco Firepower Threat Defense (FTD), позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 62%
0.00429
Низкий

8.6 High

CVSS3

7.5 High

CVSS3

7.1 High

CVSS2

Дефекты

CWE-119
CWE-755