CVE-2020-3189

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in the VPN System Logging functionality could allow an unauthenticated, remote attacker to cause a memory leak that can deplete system memory over time, leading to unexpected system behaviors or device crashes. The issue arises from the system memory not being properly freed for a VPN System Logging event generated when a VPN session is created or deleted. An attacker could exploit this by repeatedly creating or deleting a VPN tunnel connection, causing a small amount of system memory to leak for each logging event. This could lead to a systemwide denial of service (DoS) condition. The VPN System Logging is enabled by default, but the attacker has no control over its configuration.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.