Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2021-34781
HistoryOct 27, 2021 - 7:15 p.m.

CVE-2021-34781

2021-10-2719:15:08
CWE-119
CWE-755
[email protected]
web.nvd.nist.gov
2
cisco
ftd software
ssh
vulnerability
denial of service
resource exhaustion
dos_condition

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

52.8%

JSON

A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. This vulnerability is due to a lack of proper error handling when an SSH session fails to be established. An attacker could exploit this vulnerability by sending a high rate of crafted SSH connections to the instance. A successful exploit could allow the attacker to cause resource exhaustion, which causes a DoS condition on the affected device. The device must be manually reloaded to recover.

Affected configurations

Nvd
Node
ciscofirepower_management_center_virtual_applianceMatch6.3.0
OR
ciscofirepower_management_center_virtual_applianceMatch6.4.0
OR
ciscofirepower_management_center_virtual_applianceMatch6.4.0.13
OR
ciscofirepower_management_center_virtual_applianceMatch6.5.0
OR
ciscofirepower_management_center_virtual_applianceMatch6.6.0
OR
ciscofirepower_management_center_virtual_applianceMatch6.7.0.3
OR
ciscofirepower_management_center_virtual_applianceMatch6.7.1
OR
ciscofirepower_management_center_virtual_applianceMatch7.0.0
OR
ciscofirepower_threat_defenseRange6.3.06.4.0.13
OR
ciscofirepower_threat_defenseRange6.5.06.6.5
OR
ciscofirepower_threat_defenseRange6.7.06.7.0.3
OR
ciscofirepower_threat_defenseRange7.0.07.0.1
OR
ciscosourcefire_defense_centerMatch6.3.0
OR
ciscosourcefire_defense_centerMatch6.4.0
OR
ciscosourcefire_defense_centerMatch6.4.0.13
OR
ciscosourcefire_defense_centerMatch6.5.0
OR
ciscosourcefire_defense_centerMatch6.6.0
OR
ciscosourcefire_defense_centerMatch6.7.0.3
OR
ciscosourcefire_defense_centerMatch6.7.1
OR
ciscosourcefire_defense_centerMatch7.0.0
VendorProductVersionCPE
ciscofirepower_management_center_virtual_appliance6.3.0cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.3.0:*:*:*:*:*:*:*
ciscofirepower_management_center_virtual_appliance6.4.0cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.4.0:*:*:*:*:*:*:*
ciscofirepower_management_center_virtual_appliance6.4.0.13cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.4.0.13:*:*:*:*:*:*:*
ciscofirepower_management_center_virtual_appliance6.5.0cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.5.0:*:*:*:*:*:*:*
ciscofirepower_management_center_virtual_appliance6.6.0cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.6.0:*:*:*:*:*:*:*
ciscofirepower_management_center_virtual_appliance6.7.0.3cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.7.0.3:*:*:*:*:*:*:*
ciscofirepower_management_center_virtual_appliance6.7.1cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:6.7.1:*:*:*:*:*:*:*
ciscofirepower_management_center_virtual_appliance7.0.0cpe:2.3:a:cisco:firepower_management_center_virtual_appliance:7.0.0:*:*:*:*:*:*:*
ciscofirepower_threat_defense*cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*
ciscosourcefire_defense_center6.3.0cpe:2.3:a:cisco:sourcefire_defense_center:6.3.0:*:*:*:*:*:*:*
Rows per page:
1-10 of 171

Related

cvelist 1
nessus 1
cisco 1
prion 1
cve 1
cvelist
cvelist
CVE-2021-34781 Cisco Firepower Threat Defense Software SSH Connections Denial of Service Vulnerability
2021-10-27 18:55:52
nessus
nessus
Cisco Firepower Threat Defense Software SSH Connections DoS (cisco-sa-ftd-dos-rUDseW3r)
2021-11-17 00:00:00
cisco
cisco
Cisco Firepower Threat Defense Software SSH Connections Denial of Service Vulnerability
2021-10-27 16:00:00
prion
prion
Design/Logic Flaw
2021-10-27 19:15:00
cve
cve
CVE-2021-34781
2021-10-27 19:15:08

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

52.8%

JSON
Related for NVD:CVE-2021-34781
cvelist1nessus1cisco1prion1cve1