CVE-2023-20270

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software (affected versions not specified)

Description The issue is due to improper error-checking when the Snort 3 detection engine is processing SMB traffic, allowing an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service (DoS) condition on an affected device. An attacker could exploit this by sending a crafted SMB packet stream through an affected device, potentially causing the Snort process to reload and resulting in a DoS condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.