CVE-2020-3285

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A logic error in the handling of the Transport Layer Security version 1.3 (TLS 1.3) policy with URL category functionality could allow an unauthenticated, remote attacker to bypass a configured TLS 1.3 policy to block traffic for a specific URL. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted TLS 1.3 connections to an affected device, potentially allowing access to URLs that are normally dropped.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.