Vulnerability in Snort Detection Engine Affects Cisco Products
CVE-2023-20071

5.8MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco Firepower Threat Defense Software; Cisco Umbrella Insights Virtual Appliance; Cisco Cyber Vision; Cisco UTD SNORT IPS Engine Software
Vendor: CVE Published:; 1 November 2023

Summary

A vulnerability exists within the FTP module of Cisco's Snort detection engine, which enables unauthenticated, remote attackers to potentially bypass established security policies on affected systems. By sending specifically crafted FTP traffic, attackers can exploit this flaw to evade FTP inspections and potentially deliver malicious payloads. This poses a significant risk to network integrity, allowing unauthorized access and potentially harmful activities.

Affected Version(s)

Cisco Cyber Vision 3.0.4

Cisco Cyber Vision 3.0.0

Cisco Cyber Vision 3.0.1

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Nov 1, 2023
Vulnerability Reserved
Oct 27, 2022