CVE-2018-15462

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in the TCP ingress handler could allow an unauthenticated, remote attacker to cause an increase in CPU and memory usage, resulting in a denial of service (DoS) condition. The issue is due to insufficient ingress TCP rate limiting for TCP ports 22 (SSH) and 443 (HTTPS). An attacker could exploit this by sending a crafted, steady stream of TCP traffic to port 22 or 443 on the data interfaces configured with management access to the affected device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.