CVE-2022-20751

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description The issue is related to insufficient memory management for certain Snort events in the Snort detection engine integration, which could allow an unauthenticated, remote attacker to cause unlimited memory consumption. This could lead to a denial of service (DoS) condition on an affected device. An attacker could exploit this by sending a series of crafted IP packets that would generate specific Snort events. A sustained attack could cause an out of memory condition, interrupting all traffic flowing through the device, and potentially causing it to reload.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.