CVE-2020-3549

Name of the Vulnerable Software and Affected Versions Cisco Firepower Management Center (FMC) Software (affected versions not specified) Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in the sftunnel functionality could allow an unauthenticated, remote attacker to obtain the device registration hash. This issue is due to insufficient sftunnel negotiation protection during initial device registration. An attacker in a man-in-the-middle position could exploit this by intercepting a specific flow of the sftunnel communication between an FMC device and an FTD device. A successful exploit could allow the attacker to decrypt and modify the sftunnel communication, enabling them to modify configuration data sent from an FMC device to an FTD device or alert data sent from an FTD device to an FMC device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.