CVE-2020-3179

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A memory handling error in the generic routing encapsulation (GRE) tunnel decapsulation feature could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The issue arises when GRE over IPv6 traffic is processed. An attacker could exploit this by sending crafted GRE over IPv6 packets with either IPv4 or IPv6 payload through an affected device, potentially causing the device to crash.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.