Denial of Service Vulnerability in Cisco Snort 3 Detection Engine
CVE-2026-20067

5.8MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco Cyber Vision; Cisco Secure Firewall Threat Defense (ftd) Software; Cisco Utd Snort Ips Engine Software
Vendor: CVE Published:; 4 March 2026

Badges

👾 Exploit Exists

What is CVE-2026-20067?

Multiple Cisco products are impacted by a vulnerability in the Snort 3 detection engine that may allow an unauthenticated remote attacker to interrupt packet inspection. This issue arises from insufficient error checking during the parsing of Multicast DNS fields in the HTTP header. By sending specially crafted HTTP packets through an established connection, an attacker could exploit this vulnerability, leading to an unexpected restart of the Snort 3 Detection Engine and resulting in a denial of service condition.

Affected Version(s)

Cisco Cyber Vision 3.0.0

Cisco Cyber Vision 3.0.2

Cisco Cyber Vision 3.0.3

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Mar 4, 2026
Vulnerability published
Mar 4, 2026
Vulnerability Reserved
Oct 8, 2025

CVE-2026-20067 Data

JSON