Cisco Firepower Threat Defense Software Vulnerability
CVE-2021-34753

5.8MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco Firepower Threat Defense Software
Vendor: CVE Published:; 15 November 2024

Summary

A vulnerability exists in the payload inspection process for Ethernet Industrial Protocol (ENIP) traffic in the Cisco Firepower Threat Defense (FTD) Software, which allows unauthenticated remote attackers to potentially bypass configured access control and intrusion policies. This flaw arises from inadequate processing of ENIP packets during deep packet inspection. By sending specially crafted ENIP packets to a vulnerable interface, attackers may exploit this vulnerability to evade security measures that should normally detect and drop such packets, leading to potential unauthorized access to network resources.

Affected Version(s)

Cisco Firepower Threat Defense Software

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Nov 15, 2024
Vulnerability Reserved
Jun 15, 2021