CVE-2020-3255

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in the packet processing functionality could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The issue is due to inefficient memory management. An attacker could exploit this by sending a high rate of IPv4 or IPv6 traffic through an affected device, which would need to match a configured block action in an access control policy. This could cause a memory exhaustion condition, resulting in a DoS for traffic transiting the device and sluggish performance of the management interface. Once the traffic flood is stopped, performance should return to previous states.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.