CVE-2018-0385

Name of the Vulnerable Software and Affected Versions Cisco Firepower System Software (affected versions not specified)

Description A denial of service condition can occur in the Cisco Firepower System Software due to improper input handling of SSL traffic. This issue arises when the detection engine parsing of Security Socket Layer (SSL) protocol packets is exploited by an unauthenticated, remote attacker sending crafted SSL traffic. The exploitation can cause the Snort process to restart unexpectedly, potentially leading to traffic inspection being bypassed or traffic being dropped.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.