CVE-2022-20757
Summary
| CVE | CVE-2022-20757 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2022-05-03 04:15:00 UTC |
|---|
| Updated | 2023-11-07 03:42:00 UTC |
|---|
| Description | A vulnerability in the connection handling function in Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper traffic handling when platform limits are reached. An attacker could exploit this vulnerability by sending a high rate of UDP traffic through an affected device. A successful exploit could allow the attacker to cause all new, incoming connections to be dropped, resulting in a DoS condition. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| 20220427 Cisco Firepower Threat Defense Software Denial of Service Vulnerability |
CISCO |
tools.cisco.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 317171 Cisco Firepower Threat Defense (FTD) Software Denial of Service (DoS) Vulnerability (cisco-sa-ftd-dos-JnnJm4wB, cisco-sa-asaftd-dos-nJVAwOeq)
