CVE-2022-20854

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) and Cisco Firepower Management Center (FMC) (affected versions not specified)

Description The issue is related to an uncontrolled resource consumption vulnerability in the implementation of the SSH protocol in Cisco Firepower Threat Defense (FTD) and Cisco Firepower Management Center (FMC) software. This vulnerability could allow a remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper error handling when an SSH session fails to be established. An attacker could exploit this vulnerability by sending a high rate of crafted SSH connections to the instance, potentially causing resource exhaustion and resulting in a reboot on the affected device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.