CVE-2020-3565

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in the TCP Intercept functionality could allow an unauthenticated, remote attacker to bypass configured Access Control Policies and Service Polices on an affected system. The issue exists because TCP Intercept is invoked when the embryonic connection limit is reached, causing the underlying detection engine to process packets incorrectly. An attacker could exploit this by sending a crafted stream of traffic that matches a policy on which TCP Intercept is configured, potentially allowing traffic to be forwarded when it should be dropped or incorrectly dropped.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.