CVE-2023-20031

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A logic error in the SSL/TLS certificate handling of Snort 3 Detection Engine integration with Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the Snort 3 detection engine to restart. This occurs when an SSL/TLS certificate under load is accessed during SSL connection initiation. An attacker could exploit this by sending a high rate of SSL/TLS connection requests, potentially causing the Snort 3 detection engine to reload and resulting in either a bypass or a denial of service (DoS) condition, depending on device configuration.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.