CVE-2020-3577

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in the ingress packet processing path could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition due to insufficient validation when Ethernet frames are processed. An attacker could exploit this by sending malicious Ethernet frames through an affected device, potentially causing the /ngfw partition to fill, resulting in administrators being unable to log in or the device failing to boot correctly, or causing a process crash that would lead to the device reloading.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.