CVE-2023-20071 - Vulnerability Details

Vendors	Products
Cisco	Cyber Vision Firepower Threat Defense Meraki Mx Security Appliance Firmware Unified Threat Defense
Snort	Snort

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-20071", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2022-10-27T18:47:50.328Z", "datePublished": "2023-11-01T17:07:44.528Z", "dateUpdated": "2024-08-02T08:57:35.845Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-01-25T16:57:41.206Z"}, "descriptions": [{"lang": "en", "value": "Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a flaw in the FTP module of the Snort detection engine. An attacker could exploit this vulnerability by sending crafted FTP traffic through an affected device. A successful exploit could allow the attacker to bypass FTP inspection and deliver a malicious payload."}], "affected": [{"vendor": "Cisco", "product": "Cisco Firepower Threat Defense Software", "versions": [{"version": "6.2.3", "status": "affected"}, {"version": "6.2.3.1", "status": "affected"}, {"version": "6.2.3.2", "status": "affected"}, {"version": "6.2.3.3", "status": "affected"}, {"version": "6.2.3.4", "status": "affected"}, {"version": "6.2.3.5", "status": "affected"}, {"version": "6.2.3.6", "status": "affected"}, {"version": "6.2.3.7", "status": "affected"}, {"version": "6.2.3.8", "status": "affected"}, {"version": "6.2.3.10", "status": "affected"}, {"version": "6.2.3.11", "status": "affected"}, {"version": "6.2.3.9", "status": "affected"}, {"version": "6.2.3.12", "status": "affected"}, {"version": "6.2.3.13", "status": "affected"}, {"version": "6.2.3.14", "status": "affected"}, {"version": "6.2.3.15", "status": "affected"}, {"version": "6.2.3.16", "status": "affected"}, {"version": "6.2.3.17", "status": "affected"}, {"version": "6.2.3.18", "status": "affected"}, {"version": "6.6.0", "status": "affected"}, {"version": "6.6.0.1", "status": "affected"}, {"version": "6.6.1", "status": "affected"}, {"version": "6.6.3", "status": "affected"}, {"version": "6.6.4", "status": "affected"}, {"version": "6.6.5", "status": "affected"}, {"version": "6.6.5.1", "status": "affected"}, {"version": "6.6.5.2", "status": "affected"}, {"version": "6.6.7", "status": "affected"}, {"version": "6.6.7.1", "status": "affected"}, {"version": "6.4.0", "status": "affected"}, {"version": "6.4.0.1", "status": "affected"}, {"version": "6.4.0.3", "status": "affected"}, {"version": "6.4.0.2", "status": "affected"}, {"version": "6.4.0.4", "status": "affected"}, {"version": "6.4.0.5", "status": "affected"}, {"version": "6.4.0.6", "status": "affected"}, {"version": "6.4.0.7", "status": "affected"}, {"version": "6.4.0.8", "status": "affected"}, {"version": "6.4.0.9", "status": "affected"}, {"version": "6.4.0.10", "status": "affected"}, {"version": "6.4.0.11", "status": "affected"}, {"version": "6.4.0.12", "status": "affected"}, {"version": "6.4.0.13", "status": "affected"}, {"version": "6.4.0.14", "status": "affected"}, {"version": "6.4.0.15", "status": "affected"}, {"version": "6.4.0.16", "status": "affected"}, {"version": "6.7.0", "status": "affected"}, {"version": "6.7.0.1", "status": "affected"}, {"version": "6.7.0.2", "status": "affected"}, {"version": "6.7.0.3", "status": "affected"}, {"version": "7.0.0", "status": "affected"}, {"version": "7.0.0.1", "status": "affected"}, {"version": "7.0.1", "status": "affected"}, {"version": "7.0.1.1", "status": "affected"}, {"version": "7.0.2", "status": "affected"}, {"version": "7.0.2.1", "status": "affected"}, {"version": "7.0.3", "status": "affected"}, {"version": "7.0.4", "status": "affected"}, {"version": "7.0.5", "status": "affected"}, {"version": "7.1.0", "status": "affected"}, {"version": "7.1.0.1", "status": "affected"}, {"version": "7.1.0.2", "status": "affected"}, {"version": "7.1.0.3", "status": "affected"}, {"version": "7.2.0", "status": "affected"}, {"version": "7.2.0.1", "status": "affected"}, {"version": "7.2.1", "status": "affected"}, {"version": "7.2.2", "status": "affected"}, {"version": "7.2.3", "status": "affected"}, {"version": "7.3.0", "status": "affected"}, {"version": "7.3.1", "status": "affected"}, {"version": "7.3.1.1", "status": "affected"}]}, {"vendor": "Cisco", "product": "Cisco Umbrella Insights Virtual Appliance", "versions": [{"version": "N/A", "status": "affected"}]}, {"vendor": "Cisco", "product": "Cisco Cyber Vision", "versions": [{"version": "3.0.4", "status": "affected"}, {"version": "3.0.0", "status": "affected"}, {"version": "3.0.1", "status": "affected"}, {"version": "3.0.2", "status": "affected"}, {"version": "3.0.3", "status": "affected"}, {"version": "3.0.5", "status": "affected"}, {"version": "3.0.6", "status": "affected"}, {"version": "3.1.0", "status": "affected"}, {"version": "3.1.2", "status": "affected"}, {"version": "3.1.1", "status": "affected"}, {"version": "3.2.3", "status": "affected"}, {"version": "3.2.1", "status": "affected"}, {"version": "3.2.4", "status": "affected"}, {"version": "3.2.0", "status": "affected"}, {"version": "3.2.2", "status": "affected"}, {"version": "4.0.0", "status": "affected"}, {"version": "4.0.1", "status": "affected"}, {"version": "4.0.2", "status": "affected"}, {"version": "4.0.3", "status": "affected"}, {"version": "4.1.0", "status": "affected"}, {"version": "4.1.1", "status": "affected"}, {"version": "4.1.2", "status": "affected"}]}, {"vendor": "Cisco", "product": "Cisco UTD SNORT IPS Engine Software", "versions": [{"version": "16.12.1a", "status": "affected"}, {"version": "16.12.2", "status": "affected"}, {"version": "16.12.3", "status": "affected"}, {"version": "16.12.4", "status": "affected"}, {"version": "16.12.5", "status": "affected"}, {"version": "16.12.6", "status": "affected"}, {"version": "16.12.7", "status": "affected"}, {"version": "16.12.8", "status": "affected"}, {"version": "16.6.1", "status": "affected"}, {"version": "16.6.5", "status": "affected"}, {"version": "16.6.6", "status": "affected"}, {"version": "16.6.7a", "status": "affected"}, {"version": "16.6.9", "status": "affected"}, {"version": "16.6.10", "status": "affected"}, {"version": "17.1.1", "status": "affected"}, {"version": "17.2.1r", "status": "affected"}, {"version": "17.3.1a", "status": "affected"}, {"version": "17.3.2", "status": "affected"}, {"version": "17.3.3", "status": "affected"}, {"version": "17.3.4a", "status": "affected"}, {"version": "17.3.6", "status": "affected"}, {"version": "17.3.5", "status": "affected"}, {"version": "17.3.7", "status": "affected"}, {"version": "3.17.0S", "status": "affected"}, {"version": "3.17.1S", "status": "affected"}, {"version": "17.4.1a", "status": "affected"}, {"version": "17.4.2", "status": "affected"}, {"version": "17.4.1b", "status": "affected"}, {"version": "17.5.1a", "status": "affected"}, {"version": "17.6.1a", "status": "affected"}, {"version": "17.6.2", "status": "affected"}, {"version": "17.6.3a", "status": "affected"}, {"version": "17.6.4", "status": "affected"}, {"version": "17.6.5", "status": "affected"}, {"version": "17.7.1a", "status": "affected"}, {"version": "17.7.2", "status": "affected"}, {"version": "17.10.1a", "status": "affected"}, {"version": "17.9.1a", "status": "affected"}, {"version": "17.9.2a", "status": "affected"}, {"version": "17.9.3a", "status": "affected"}, {"version": "17.8.1a", "status": "affected"}, {"version": "Fuji-16.9.2", "status": "affected"}, {"version": "Fuji-16.9.4", "status": "affected"}, {"version": "Fuji-16.9.6", "status": "affected"}, {"version": "Fuji-16.9.3", "status": "affected"}, {"version": "Fuji-16.9.7", "status": "affected"}, {"version": "Fuji-16.9.8", "status": "affected"}, {"version": "Fuji-16.9.5", "status": "affected"}, {"version": "Denali-16.3.3", "status": "affected"}, {"version": "Denali-16.3.9", "status": "affected"}, {"version": "Denali-16.3.7", "status": "affected"}, {"version": "Denali-16.3.5", "status": "affected"}, {"version": "Denali-16.3.4", "status": "affected"}, {"version": "Everest-16.6.3", "status": "affected"}, {"version": "Everest-16.6.4", "status": "affected"}, {"version": "Everest-16.6.2", "status": "affected"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations", "type": "cwe", "cweId": "CWE-1039"}]}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM", "name": "cisco-sa-snort-ftd-zXYtnjOM"}], "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N", "baseScore": 5.8, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "NONE"}}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-snort-ftd-zXYtnjOM", "discovery": "INTERNAL", "defects": ["CSCwb69096", "CSCwd83613", "CSCwd09631", "CSCwe02137", "CSCwe57521"]}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T08:57:35.845Z"}, "title": "CVE Program Container", "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM", "name": "cisco-sa-snort-ftd-zXYtnjOM", "tags": ["x_transferred"]}]}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2023-20071 (string)

assignerOrgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

state : PUBLISHED (string)

assignerShortName : cisco (string)

dateReserved : 2022-10-27T18:47:50.328Z (string)

datePublished : 2023-11-01T17:07:44.528Z (string)

dateUpdated : 2024-08-02T08:57:35.845Z (string)

}

containers : { »

cna : { »

providerMetadata : { »

orgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

shortName : cisco (string)

dateUpdated : 2024-01-25T16:57:41.206Z (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a flaw in the FTP module of the Snort detection engine. An attacker could exploit this vulnerability by sending crafted FTP traffic through an affected device. A successful exploit could allow the attacker to bypass FTP inspection and deliver a malicious payload. (string)

}

]

affected : [ »

0 : { »

vendor : Cisco (string)

product : Cisco Firepower Threat Defense Software (string)

versions : [ »

0 : { »

version : 6.2.3 (string)

status : affected (string)

}

1 : { »

version : 6.2.3.1 (string)

status : affected (string)

}

2 : { »

version : 6.2.3.2 (string)

status : affected (string)

}

3 : { »

version : 6.2.3.3 (string)

status : affected (string)

}

4 : { »

version : 6.2.3.4 (string)

status : affected (string)

}

5 : { »

version : 6.2.3.5 (string)

status : affected (string)

}

6 : { »

version : 6.2.3.6 (string)

status : affected (string)

}

7 : { »

version : 6.2.3.7 (string)

status : affected (string)

}

8 : { »

version : 6.2.3.8 (string)

status : affected (string)

}

9 : { »

version : 6.2.3.10 (string)

status : affected (string)

}

10 : { »

version : 6.2.3.11 (string)

status : affected (string)

}

11 : { »

version : 6.2.3.9 (string)

status : affected (string)

}

12 : { »

version : 6.2.3.12 (string)

status : affected (string)

}

13 : { »

version : 6.2.3.13 (string)

status : affected (string)

}

14 : { »

version : 6.2.3.14 (string)

status : affected (string)

}

15 : { »

version : 6.2.3.15 (string)

status : affected (string)

}

16 : { »

version : 6.2.3.16 (string)

status : affected (string)

}

17 : { »

version : 6.2.3.17 (string)

status : affected (string)

}

18 : { »

version : 6.2.3.18 (string)

status : affected (string)

}

19 : { »

version : 6.6.0 (string)

status : affected (string)

}

20 : { »

version : 6.6.0.1 (string)

status : affected (string)

}

21 : { »

version : 6.6.1 (string)

status : affected (string)

}

22 : { »

version : 6.6.3 (string)

status : affected (string)

}

23 : { »

version : 6.6.4 (string)

status : affected (string)

}

24 : { »

version : 6.6.5 (string)

status : affected (string)

}

25 : { »

version : 6.6.5.1 (string)

status : affected (string)

}

26 : { »

version : 6.6.5.2 (string)

status : affected (string)

}

27 : { »

version : 6.6.7 (string)

status : affected (string)

}

28 : { »

version : 6.6.7.1 (string)

status : affected (string)

}

29 : { »

version : 6.4.0 (string)

status : affected (string)

}

30 : { »

version : 6.4.0.1 (string)

status : affected (string)

}

31 : { »

version : 6.4.0.3 (string)

status : affected (string)

}

32 : { »

version : 6.4.0.2 (string)

status : affected (string)

}

33 : { »

version : 6.4.0.4 (string)

status : affected (string)

}

34 : { »

version : 6.4.0.5 (string)

status : affected (string)

}

35 : { »

version : 6.4.0.6 (string)

status : affected (string)

}

36 : { »

version : 6.4.0.7 (string)

status : affected (string)

}

37 : { »

version : 6.4.0.8 (string)

status : affected (string)

}

38 : { »

version : 6.4.0.9 (string)

status : affected (string)

}

39 : { »

version : 6.4.0.10 (string)

status : affected (string)

}

40 : { »

version : 6.4.0.11 (string)

status : affected (string)

}

41 : { »

version : 6.4.0.12 (string)

status : affected (string)

}

42 : { »

version : 6.4.0.13 (string)

status : affected (string)

}

43 : { »

version : 6.4.0.14 (string)

status : affected (string)

}

44 : { »

version : 6.4.0.15 (string)

status : affected (string)

}

45 : { »

version : 6.4.0.16 (string)

status : affected (string)

}

46 : { »

version : 6.7.0 (string)

status : affected (string)

}

47 : { »

version : 6.7.0.1 (string)

status : affected (string)

}

48 : { »

version : 6.7.0.2 (string)

status : affected (string)

}

49 : { »

version : 6.7.0.3 (string)

status : affected (string)

}

50 : { »

version : 7.0.0 (string)

status : affected (string)

}

51 : { »

version : 7.0.0.1 (string)

status : affected (string)

}

52 : { »

version : 7.0.1 (string)

status : affected (string)

}

53 : { »

version : 7.0.1.1 (string)

status : affected (string)

}

54 : { »

version : 7.0.2 (string)

status : affected (string)

}

55 : { »

version : 7.0.2.1 (string)

status : affected (string)

}

56 : { »

version : 7.0.3 (string)

status : affected (string)

}

57 : { »

version : 7.0.4 (string)

status : affected (string)

}

58 : { »

version : 7.0.5 (string)

status : affected (string)

}

59 : { »

version : 7.1.0 (string)

status : affected (string)

}

60 : { »

version : 7.1.0.1 (string)

status : affected (string)

}

61 : { »

version : 7.1.0.2 (string)

status : affected (string)

}

62 : { »

version : 7.1.0.3 (string)

status : affected (string)

}

63 : { »

version : 7.2.0 (string)

status : affected (string)

}

64 : { »

version : 7.2.0.1 (string)

status : affected (string)

}

65 : { »

version : 7.2.1 (string)

status : affected (string)

}

66 : { »

version : 7.2.2 (string)

status : affected (string)

}

67 : { »

version : 7.2.3 (string)

status : affected (string)

}

68 : { »

version : 7.3.0 (string)

status : affected (string)

}

69 : { »

version : 7.3.1 (string)

status : affected (string)

}

70 : { »

version : 7.3.1.1 (string)

status : affected (string)

}

]

}

1 : { »

vendor : Cisco (string)

product : Cisco Umbrella Insights Virtual Appliance (string)

versions : [ »

0 : { »

version : N/A (string)

status : affected (string)

}

]

}

2 : { »

vendor : Cisco (string)

product : Cisco Cyber Vision (string)

versions : [ »

0 : { »

version : 3.0.4 (string)

status : affected (string)

}

1 : { »

version : 3.0.0 (string)

status : affected (string)

}

2 : { »

version : 3.0.1 (string)

status : affected (string)

}

3 : { »

version : 3.0.2 (string)

status : affected (string)

}

4 : { »

version : 3.0.3 (string)

status : affected (string)

}

5 : { »

version : 3.0.5 (string)

status : affected (string)

}

6 : { »

version : 3.0.6 (string)

status : affected (string)

}

7 : { »

version : 3.1.0 (string)

status : affected (string)

}

8 : { »

version : 3.1.2 (string)

status : affected (string)

}

9 : { »

version : 3.1.1 (string)

status : affected (string)

}

10 : { »

version : 3.2.3 (string)

status : affected (string)

}

11 : { »

version : 3.2.1 (string)

status : affected (string)

}

12 : { »

version : 3.2.4 (string)

status : affected (string)

}

13 : { »

version : 3.2.0 (string)

status : affected (string)

}

14 : { »

version : 3.2.2 (string)

status : affected (string)

}

15 : { »

version : 4.0.0 (string)

status : affected (string)

}

16 : { »

version : 4.0.1 (string)

status : affected (string)

}

17 : { »

version : 4.0.2 (string)

status : affected (string)

}

18 : { »

version : 4.0.3 (string)

status : affected (string)

}

19 : { »

version : 4.1.0 (string)

status : affected (string)

}

20 : { »

version : 4.1.1 (string)

status : affected (string)

}

21 : { »

version : 4.1.2 (string)

status : affected (string)

}

]

}

3 : { »

vendor : Cisco (string)

product : Cisco UTD SNORT IPS Engine Software (string)

versions : [ »

0 : { »

version : 16.12.1a (string)

status : affected (string)

}

1 : { »

version : 16.12.2 (string)

status : affected (string)

}

2 : { »

version : 16.12.3 (string)

status : affected (string)

}

3 : { »

version : 16.12.4 (string)

status : affected (string)

}

4 : { »

version : 16.12.5 (string)

status : affected (string)

}

5 : { »

version : 16.12.6 (string)

status : affected (string)

}

6 : { »

version : 16.12.7 (string)

status : affected (string)

}

7 : { »

version : 16.12.8 (string)

status : affected (string)

}

8 : { »

version : 16.6.1 (string)

status : affected (string)

}

9 : { »

version : 16.6.5 (string)

status : affected (string)

}

10 : { »

version : 16.6.6 (string)

status : affected (string)

}

11 : { »

version : 16.6.7a (string)

status : affected (string)

}

12 : { »

version : 16.6.9 (string)

status : affected (string)

}

13 : { »

version : 16.6.10 (string)

status : affected (string)

}

14 : { »

version : 17.1.1 (string)

status : affected (string)

}

15 : { »

version : 17.2.1r (string)

status : affected (string)

}

16 : { »

version : 17.3.1a (string)

status : affected (string)

}

17 : { »

version : 17.3.2 (string)

status : affected (string)

}

18 : { »

version : 17.3.3 (string)

status : affected (string)

}

19 : { »

version : 17.3.4a (string)

status : affected (string)

}

20 : { »

version : 17.3.6 (string)

status : affected (string)

}

21 : { »

version : 17.3.5 (string)

status : affected (string)

}

22 : { »

version : 17.3.7 (string)

status : affected (string)

}

23 : { »

version : 3.17.0S (string)

status : affected (string)

}

24 : { »

version : 3.17.1S (string)

status : affected (string)

}

25 : { »

version : 17.4.1a (string)

status : affected (string)

}

26 : { »

version : 17.4.2 (string)

status : affected (string)

}

27 : { »

version : 17.4.1b (string)

status : affected (string)

}

28 : { »

version : 17.5.1a (string)

status : affected (string)

}

29 : { »

version : 17.6.1a (string)

status : affected (string)

}

30 : { »

version : 17.6.2 (string)

status : affected (string)

}

31 : { »

version : 17.6.3a (string)

status : affected (string)

}

32 : { »

version : 17.6.4 (string)

status : affected (string)

}

33 : { »

version : 17.6.5 (string)

status : affected (string)

}

34 : { »

version : 17.7.1a (string)

status : affected (string)

}

35 : { »

version : 17.7.2 (string)

status : affected (string)

}

36 : { »

version : 17.10.1a (string)

status : affected (string)

}

37 : { »

version : 17.9.1a (string)

status : affected (string)

}

38 : { »

version : 17.9.2a (string)

status : affected (string)

}

39 : { »

version : 17.9.3a (string)

status : affected (string)

}

40 : { »

version : 17.8.1a (string)

status : affected (string)

}

41 : { »

version : Fuji-16.9.2 (string)

status : affected (string)

}

42 : { »

version : Fuji-16.9.4 (string)

status : affected (string)

}

43 : { »

version : Fuji-16.9.6 (string)

status : affected (string)

}

44 : { »

version : Fuji-16.9.3 (string)

status : affected (string)

}

45 : { »

version : Fuji-16.9.7 (string)

status : affected (string)

}

46 : { »

version : Fuji-16.9.8 (string)

status : affected (string)

}

47 : { »

version : Fuji-16.9.5 (string)

status : affected (string)

}

48 : { »

version : Denali-16.3.3 (string)

status : affected (string)

}

49 : { »

version : Denali-16.3.9 (string)

status : affected (string)

}

50 : { »

version : Denali-16.3.7 (string)

status : affected (string)

}

51 : { »

version : Denali-16.3.5 (string)

status : affected (string)

}

52 : { »

version : Denali-16.3.4 (string)

status : affected (string)

}

53 : { »

version : Everest-16.6.3 (string)

status : affected (string)

}

54 : { »

version : Everest-16.6.4 (string)

status : affected (string)

}

55 : { »

version : Everest-16.6.2 (string)

status : affected (string)

}

]

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

description : Automated Recognition Mechanism with Inadequate Detection or Handling of Adversarial Input Perturbations (string)

type : cwe (string)

cweId : CWE-1039 (string)

}

]

}

]

references : [ »

0 : { »

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM (string)

name : cisco-sa-snort-ftd-zXYtnjOM (string)

}

]

metrics : [ »

0 : { »

format : cvssV3_1 (string)

cvssV3_1 : { »

version : 3.1 (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N (string)

baseScore : 5.8 (number)

baseSeverity : MEDIUM (string)

attackVector : NETWORK (string)

attackComplexity : LOW (string)

privilegesRequired : NONE (string)

userInteraction : NONE (string)

scope : CHANGED (string)

confidentialityImpact : NONE (string)

integrityImpact : LOW (string)

availabilityImpact : NONE (string)

}

]

exploits : [ »

0 : { »

lang : en (string)

value : The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. (string)

}

]

source : { »

advisory : cisco-sa-snort-ftd-zXYtnjOM (string)

discovery : INTERNAL (string)

defects : [ »

0 : CSCwb69096 (string)

1 : CSCwd83613 (string)

2 : CSCwd09631 (string)

3 : CSCwe02137 (string)

4 : CSCwe57521 (string)

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-02T08:57:35.845Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM (string)

name : cisco-sa-snort-ftd-zXYtnjOM (string)

tags : [ »

0 : x_transferred (string)

]

}

]

}

]

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "C62E4A4C-EE6D-49B5-ADCC-21386CD9F2D9", "versionEndExcluding": "6.4.0.17", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "F2A381B6-2AEF-4A0F-A151-8C3CEBBA7AC2", "versionEndExcluding": "7.0.6", "versionStartIncluding": "6.5.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "BB0ABE0D-B90E-45BD-8978-DD6EBC863EC6", "versionEndExcluding": "7.2.4", "versionStartIncluding": "7.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "233409FB-3D8D-41A9-BEC6-8A0E758717ED", "versionEndExcluding": "7.3.1.2", "versionStartIncluding": "7.3.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:snort:snort:2.0:-:*:*:*:*:*:*", "matchCriteriaId": "4C27CF59-184F-4FFD-9CE8-87F2589EB5AA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "7792398D-F563-4441-900D-ABFECAA884AF", "versionEndExcluding": "7.0.5", "versionStartIncluding": "6.7.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "0F64FDF4-9696-4FC8-9ADA-DF1727EF1A63", "versionEndExcluding": "7.1.0.3", "versionStartIncluding": "7.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "F712E334-BA34-4D9C-9E72-DBEFCF9B0E66", "versionEndExcluding": "7.2.1", "versionStartIncluding": "7.2.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*", "matchCriteriaId": "B5D0C2A5-A925-475B-8B2F-F8E3F27C0876", "versionEndExcluding": "3.1.32.0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:cyber_vision:*:*:*:*:*:*:*:*", "matchCriteriaId": "CCA9E447-86A4-46AC-9D6B-55D6F8664488", "versionEndExcluding": "4.1.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "BE0EDFC9-F9CD-487F-AB5C-38E8340BF427", "versionEndExcluding": "17.3.8", "versionStartIncluding": "17.3", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "85C85786-8BA2-4194-9A07-9F8E676E75C9", "versionEndExcluding": "17.6.6", "versionStartIncluding": "17.6", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "B50A5D29-0995-469D-86B8-0C5473FC54FC", "versionEndExcluding": "17.9.4", "versionStartIncluding": "17.9", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "0DB2D2F1-FB90-485D-B6B4-B6E0A9351C95", "versionEndExcluding": "17.11.1a", "versionStartIncluding": "17.11", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*", "matchCriteriaId": "FC04A2AB-CAAA-4723-90FD-C35CED76E029", "versionEndExcluding": "17.12.1a", "versionStartIncluding": "17.12", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:meraki_mx_security_appliance_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "4C60FD7B-F41F-4307-B3F4-905E7B7C17AF", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a flaw in the FTP module of the Snort detection engine. An attacker could exploit this vulnerability by sending crafted FTP traffic through an affected device. A successful exploit could allow the attacker to bypass FTP inspection and deliver a malicious payload."}, {"lang": "es", "value": "Varios productos de Cisco se ven afectados por una vulnerabilidad en el motor de detecci\u00f3n Snort que podr\u00eda permitir que un atacante remoto no autenticado omitir las pol\u00edticas configuradas en un sistema afectado. Esta vulnerabilidad se debe a una falla en el m\u00f3dulo FTP del motor de detecci\u00f3n de Snort. Un atacante podr\u00eda aprovechar esta vulnerabilidad enviando tr\u00e1fico FTP manipulado a trav\u00e9s de un dispositivo afectado. Un exploit exitoso podr\u00eda permitir al atacante omitir la inspecci\u00f3n de FTP y entregar un payload maliciosa."}], "id": "CVE-2023-20071", "lastModified": "2024-11-21T07:40:29.093", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "ykramarz@cisco.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-11-01T18:15:09.090", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1039"}], "source": "ykramarz@cisco.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : C62E4A4C-EE6D-49B5-ADCC-21386CD9F2D9 (string)

versionEndExcluding : 6.4.0.17 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : F2A381B6-2AEF-4A0F-A151-8C3CEBBA7AC2 (string)

versionEndExcluding : 7.0.6 (string)

versionStartIncluding : 6.5.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : BB0ABE0D-B90E-45BD-8978-DD6EBC863EC6 (string)

versionEndExcluding : 7.2.4 (string)

versionStartIncluding : 7.1.0 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 233409FB-3D8D-41A9-BEC6-8A0E758717ED (string)

versionEndExcluding : 7.3.1.2 (string)

versionStartIncluding : 7.3.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:snort:snort:2.0:-:*:*:*:*:*:* (string)

matchCriteriaId : 4C27CF59-184F-4FFD-9CE8-87F2589EB5AA (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 7792398D-F563-4441-900D-ABFECAA884AF (string)

versionEndExcluding : 7.0.5 (string)

versionStartIncluding : 6.7.0 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 0F64FDF4-9696-4FC8-9ADA-DF1727EF1A63 (string)

versionEndExcluding : 7.1.0.3 (string)

versionStartIncluding : 7.1.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : F712E334-BA34-4D9C-9E72-DBEFCF9B0E66 (string)

versionEndExcluding : 7.2.1 (string)

versionStartIncluding : 7.2.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:* (string)

matchCriteriaId : B5D0C2A5-A925-475B-8B2F-F8E3F27C0876 (string)

versionEndExcluding : 3.1.32.0 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

2 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:cisco:cyber_vision:*:*:*:*:*:*:*:* (string)

matchCriteriaId : CCA9E447-86A4-46AC-9D6B-55D6F8664488 (string)

versionEndExcluding : 4.1.3 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

3 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : BE0EDFC9-F9CD-487F-AB5C-38E8340BF427 (string)

versionEndExcluding : 17.3.8 (string)

versionStartIncluding : 17.3 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 85C85786-8BA2-4194-9A07-9F8E676E75C9 (string)

versionEndExcluding : 17.6.6 (string)

versionStartIncluding : 17.6 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : B50A5D29-0995-469D-86B8-0C5473FC54FC (string)

versionEndExcluding : 17.9.4 (string)

versionStartIncluding : 17.9 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 0DB2D2F1-FB90-485D-B6B4-B6E0A9351C95 (string)

versionEndExcluding : 17.11.1a (string)

versionStartIncluding : 17.11 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:* (string)

matchCriteriaId : FC04A2AB-CAAA-4723-90FD-C35CED76E029 (string)

versionEndExcluding : 17.12.1a (string)

versionStartIncluding : 17.12 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

4 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:cisco:meraki_mx_security_appliance_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 4C60FD7B-F41F-4307-B3F4-905E7B7C17AF (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a flaw in the FTP module of the Snort detection engine. An attacker could exploit this vulnerability by sending crafted FTP traffic through an affected device. A successful exploit could allow the attacker to bypass FTP inspection and deliver a malicious payload. (string)

}

1 : { »

lang : es (string)

value : Varios productos de Cisco se ven afectados por una vulnerabilidad en el motor de detección Snort que podría permitir que un atacante remoto no autenticado omitir las políticas configuradas en un sistema afectado. Esta vulnerabilidad se debe a una falla en el módulo FTP del motor de detección de Snort. Un atacante podría aprovechar esta vulnerabilidad enviando tráfico FTP manipulado a través de un dispositivo afectado. Un exploit exitoso podría permitir al atacante omitir la inspección de FTP y entregar un payload maliciosa. (string)

}

]

id : CVE-2023-20071 (string)

lastModified : 2024-11-21T07:40:29.093 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 5.8 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : NONE (string)

integrityImpact : LOW (string)

privilegesRequired : NONE (string)

scope : CHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 1.4 (number)

source : ykramarz@cisco.com (string)

type : Secondary (string)

}

1 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 5.8 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : NONE (string)

integrityImpact : LOW (string)

privilegesRequired : NONE (string)

scope : CHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 1.4 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2023-11-01T18:15:09.090 (string)

references : [ »

0 : { »

source : ykramarz@cisco.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-ftd-zXYtnjOM (string)

}

]

sourceIdentifier : ykramarz@cisco.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-1039 (string)

}

]

source : ykramarz@cisco.com (string)

type : Secondary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : NVD-CWE-noinfo (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object