Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system.
This vulnerability is due to a flaw in the FTP module of the Snort detection engine. An attacker could exploit this vulnerability by sending crafted FTP traffic through an affected device. A successful exploit could allow the attacker to bypass FTP inspection and deliver a malicious payload.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM”]
This advisory is part of the November 2023 release of the Cisco ASA, FTD, and FMC Security Advisory Bundled publication. For a complete list of the advisories and links to them, see Cisco Event Response: November 2023 Semiannual Cisco ASA, FMC, and FTD Software Security Advisory Bundled Publication [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74985”].
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | firepower_threat_defense_software | 6.2 | cpe:2.3:a:cisco:firepower_threat_defense_software:6.2:*:*:*:*:*:*:* |
cisco | firepower_threat_defense_software | 6.6 | cpe:2.3:a:cisco:firepower_threat_defense_software:6.6:*:*:*:*:*:*:* |
cisco | firepower_threat_defense_software | 6.4 | cpe:2.3:a:cisco:firepower_threat_defense_software:6.4:*:*:*:*:*:*:* |
cisco | firepower_threat_defense_software | 6.7 | cpe:2.3:a:cisco:firepower_threat_defense_software:6.7:*:*:*:*:*:*:* |
cisco | firepower_threat_defense_software | 7.0 | cpe:2.3:a:cisco:firepower_threat_defense_software:7.0:*:*:*:*:*:*:* |
cisco | firepower_threat_defense_software | 7.1 | cpe:2.3:a:cisco:firepower_threat_defense_software:7.1:*:*:*:*:*:*:* |
cisco | firepower_threat_defense_software | 7.2 | cpe:2.3:a:cisco:firepower_threat_defense_software:7.2:*:*:*:*:*:*:* |
cisco | firepower_threat_defense_software | 7.3 | cpe:2.3:a:cisco:firepower_threat_defense_software:7.3:*:*:*:*:*:*:* |
cisco | firepower_2100_firmware | any | cpe:2.3:o:cisco:firepower_2100_firmware:any:*:*:*:*:*:*:* |
cisco | firepower_management_center_1000_firmware | any | cpe:2.3:o:cisco:firepower_management_center_1000_firmware:any:*:*:*:*:*:*:* |