漏洞标题
N/A
漏洞描述信息
Cisco Firepower System Software 的检测引擎中的一个漏洞可能导致未验证的远程攻击者使其中一个检测进程耗尽内存,从而减缓流量处理。这个漏洞是由于在启用安全套接字层(SSL)检查策略时,对流量的不当处理导致的。攻击者可以通过通过受影响的设备发送恶意流量来利用这个漏洞。利用可能会导致攻击者增加受影响设备上单个 Snort 检测引擎实例的 resource 消耗。这将导致性能下降,并最终使受影响的 Snort 进程重启。Cisco Bug ID: CSCvi09219, CSCvi29845。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause one of the detection engine processes to run out of memory and thus slow down traffic processing. The vulnerability is due to improper handling of traffic when the Secure Sockets Layer (SSL) inspection policy is enabled. An attacker could exploit this vulnerability by sending malicious traffic through an affected device. An exploit could allow the attacker to increase the resource consumption of a single instance of the Snort detection engine on an affected device. This will lead to performance degradation and eventually the restart of the affected Snort process. Cisco Bug IDs: CSCvi09219, CSCvi29845.
CVSS信息
N/A
漏洞类别
资源管理错误
漏洞标题
Cisco Firepower System Software检测引擎资源管理错误漏洞
漏洞描述信息
Cisco Firepower System Software是美国思科(Cisco)公司的一款下一代防火墙产品(NGFW)。 Cisco Firepower System Software中的检测引擎存在资源管理错误漏洞,该漏洞源于在安全套接层检测策略打开时,程序没有正确的处理流量。远程攻击者可通过发送恶意的流量利用该漏洞造成检测引擎进程耗尽内存,从而降低流量的处理速度。
CVSS信息
N/A
漏洞类别
资源管理错误