CVE-2022-20746
Summary
| CVE | CVE-2022-20746 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2022-05-03 04:15:00 UTC |
|---|
| Updated | 2023-11-07 03:42:00 UTC |
|---|
| Description | A vulnerability in the TCP proxy functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition. This vulnerability is due to improper handling of TCP flows. An attacker could exploit this vulnerability by sending a crafted stream of TCP traffic through an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| 20220427 Cisco Firepower Threat Defense Software TCP Proxy Denial of Service Vulnerability |
CISCO |
tools.cisco.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 317170 Cisco Firepower Threat Defense (FTD) Software Transmission Control Protocol (TCP) Proxy Denial of Service (DoS) Vulnerability (cisco-sa-ftd-tcp-dos-kM9SHhOu)
