PT-2018-1781 · Cisco · Cisco Firepower System

Published

2018-11-07

Updated

2019-10-09

CVE-2018-15443

CVSS v3.1

5.8

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions Cisco Firepower System Software (affected versions not specified)

Description A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a configured Intrusion Prevention System (IPS) rule that inspects certain types of TCP traffic. The issue is due to incorrect TCP retransmission handling. An attacker could exploit this by sending a crafted TCP connection request through an affected device, potentially allowing uninspected traffic onto the network.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

BDU:2018-01381

CVE-2018-15443

Affected Products

Cisco Firepower System

PT-2018-1781 · Cisco · Cisco Firepower System

CVE-2018-15443

Weakness Enumeration

Related Identifiers

Affected Products

References · 4