CVE-2024-20351

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense (FTD) Software (affected versions not specified) Cisco FirePOWER Services (affected versions not specified)

Description: A vulnerability in the TCP/IP traffic handling function of the Snort Detection Engine could allow an unauthenticated, remote attacker to cause legitimate network traffic to be dropped, resulting in a denial of service (DoS) condition. This is due to the improper handling of TCP/IP network traffic. An attacker could exploit this by sending a large amount of TCP/IP network traffic through the affected device, causing the device to drop network traffic and resulting in a DoS condition. The affected device must be rebooted to resolve the DoS condition.

Recommendations: For Cisco Firepower Threat Defense (FTD) Software, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Cisco FirePOWER Services, at the moment, there is no information about a newer version that contains a fix for this vulnerability.