CVE-2024-20407 - Vulnerability Details

Vendors	Products
Cisco	Firepower Threat Defense Software

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-bypass-PTry37fX

Type	Values Removed	Values Added
First Time appeared		Cisco Cisco firepower Threat Defense Software
CPEs		cpe:2.3:a:cisco:firepower_threat_defense_software::::::::
Vendors & Products		Cisco Cisco firepower Threat Defense Software
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Type	Values Removed	Values Added
Description		A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies on an affected system. Devices that are configured with Snort 2 are not affected by this vulnerability. This vulnerability is due to a logic error when handling embryonic (half-open) TCP connections. An attacker could exploit this vulnerability by sending a crafted traffic pattern through an affected device. A successful exploit could allow unintended traffic to enter the network protected by the affected device.
Weaknesses		CWE-399
References		https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-bypass-PTry37fX
Metrics		cvssV3_1 `{'score': 5.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N'}`

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-20407", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2023-11-08T15:08:07.661Z", "datePublished": "2024-10-23T17:36:40.728Z", "dateUpdated": "2024-10-24T16:09:41.083Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-10-23T17:36:40.728Z"}, "descriptions": [{"lang": "en", "value": "A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies on an affected system. Devices that are configured with Snort 2 are not affected by this vulnerability. \r\n\r This vulnerability is due to a logic error when handling embryonic (half-open) TCP connections. An attacker could exploit this vulnerability by sending a crafted traffic pattern through an affected device. A successful exploit could allow unintended traffic to enter the network protected by the affected device."}], "affected": [{"vendor": "Cisco", "product": "Cisco Firepower Threat Defense Software", "versions": [{"version": "6.2.3", "status": "affected"}, {"version": "6.2.3.1", "status": "affected"}, {"version": "6.2.3.2", "status": "affected"}, {"version": "6.2.3.3", "status": "affected"}, {"version": "6.2.3.4", "status": "affected"}, {"version": "6.2.3.5", "status": "affected"}, {"version": "6.2.3.6", "status": "affected"}, {"version": "6.2.3.7", "status": "affected"}, {"version": "6.2.3.8", "status": "affected"}, {"version": "6.2.3.10", "status": "affected"}, {"version": "6.2.3.11", "status": "affected"}, {"version": "6.2.3.9", "status": "affected"}, {"version": "6.2.3.12", "status": "affected"}, {"version": "6.2.3.13", "status": "affected"}, {"version": "6.2.3.14", "status": "affected"}, {"version": "6.2.3.15", "status": "affected"}, {"version": "6.2.3.16", "status": "affected"}, {"version": "6.2.3.17", "status": "affected"}, {"version": "6.2.3.18", "status": "affected"}, {"version": "6.6.0", "status": "affected"}, {"version": "6.6.0.1", "status": "affected"}, {"version": "6.6.1", "status": "affected"}, {"version": "6.6.3", "status": "affected"}, {"version": "6.6.4", "status": "affected"}, {"version": "6.6.5", "status": "affected"}, {"version": "6.6.5.1", "status": "affected"}, {"version": "6.6.5.2", "status": "affected"}, {"version": "6.6.7", "status": "affected"}, {"version": "6.6.7.1", "status": "affected"}, {"version": "6.6.7.2", "status": "affected"}, {"version": "6.4.0", "status": "affected"}, {"version": "6.4.0.1", "status": "affected"}, {"version": "6.4.0.3", "status": "affected"}, {"version": "6.4.0.2", "status": "affected"}, {"version": "6.4.0.4", "status": "affected"}, {"version": "6.4.0.5", "status": "affected"}, {"version": "6.4.0.6", "status": "affected"}, {"version": "6.4.0.7", "status": "affected"}, {"version": "6.4.0.8", "status": "affected"}, {"version": "6.4.0.9", "status": "affected"}, {"version": "6.4.0.10", "status": "affected"}, {"version": "6.4.0.11", "status": "affected"}, {"version": "6.4.0.12", "status": "affected"}, {"version": "6.4.0.13", "status": "affected"}, {"version": "6.4.0.14", "status": "affected"}, {"version": "6.4.0.15", "status": "affected"}, {"version": "6.4.0.16", "status": "affected"}, {"version": "6.4.0.17", "status": "affected"}, {"version": "6.4.0.18", "status": "affected"}, {"version": "6.7.0", "status": "affected"}, {"version": "6.7.0.1", "status": "affected"}, {"version": "6.7.0.2", "status": "affected"}, {"version": "6.7.0.3", "status": "affected"}, {"version": "7.0.0", "status": "affected"}, {"version": "7.0.0.1", "status": "affected"}, {"version": "7.0.1", "status": "affected"}, {"version": "7.0.1.1", "status": "affected"}, {"version": "7.0.2", "status": "affected"}, {"version": "7.0.2.1", "status": "affected"}, {"version": "7.0.3", "status": "affected"}, {"version": "7.0.4", "status": "affected"}, {"version": "7.0.5", "status": "affected"}, {"version": "7.0.6", "status": "affected"}, {"version": "7.0.6.1", "status": "affected"}, {"version": "7.0.6.2", "status": "affected"}, {"version": "7.1.0", "status": "affected"}, {"version": "7.1.0.1", "status": "affected"}, {"version": "7.1.0.2", "status": "affected"}, {"version": "7.1.0.3", "status": "affected"}, {"version": "7.2.0", "status": "affected"}, {"version": "7.2.0.1", "status": "affected"}, {"version": "7.2.1", "status": "affected"}, {"version": "7.2.2", "status": "affected"}, {"version": "7.2.3", "status": "affected"}, {"version": "7.2.4", "status": "affected"}, {"version": "7.2.4.1", "status": "affected"}, {"version": "7.2.5", "status": "affected"}, {"version": "7.2.5.1", "status": "affected"}, {"version": "7.2.6", "status": "affected"}, {"version": "7.2.7", "status": "affected"}, {"version": "7.2.5.2", "status": "affected"}, {"version": "7.2.8", "status": "affected"}, {"version": "7.2.8.1", "status": "affected"}, {"version": "7.3.0", "status": "affected"}, {"version": "7.3.1", "status": "affected"}, {"version": "7.3.1.1", "status": "affected"}, {"version": "7.3.1.2", "status": "affected"}, {"version": "7.4.0", "status": "affected"}, {"version": "7.4.1", "status": "affected"}, {"version": "7.4.1.1", "status": "affected"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Resource Management Errors", "type": "cwe", "cweId": "CWE-399"}]}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-bypass-PTry37fX", "name": "cisco-sa-snort-bypass-PTry37fX"}], "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N", "baseScore": 5.8, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "NONE"}}], "exploits": [{"lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-snort-bypass-PTry37fX", "discovery": "EXTERNAL", "defects": ["CSCwi42291"]}}, "adp": [{"affected": [{"vendor": "cisco", "product": "firepower_threat_defense_software", "cpes": ["cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "6.2.3", "status": "affected", "lessThanOrEqual": "6.2.3.18", "versionType": "custom"}, {"version": "6.4.0", "status": "affected", "lessThanOrEqual": "6.4.0.18", "versionType": "custom"}, {"version": "6.6.0", "status": "affected", "lessThanOrEqual": "6.6.7.2", "versionType": "custom"}, {"version": "6.7.0", "status": "affected", "lessThanOrEqual": "6.7.0.3", "versionType": "custom"}, {"version": "7.0.0", "status": "affected", "lessThanOrEqual": "7.0.6.2", "versionType": "custom"}, {"version": "7.1.0", "status": "affected", "lessThanOrEqual": "7.1.0.3", "versionType": "custom"}, {"version": "7.2.0", "status": "affected", "lessThanOrEqual": "7.2.8.1", "versionType": "custom"}, {"version": "7.3.0", "status": "affected", "lessThanOrEqual": "7.3.1.2", "versionType": "custom"}, {"version": "7.4.0", "status": "affected", "lessThanOrEqual": "7.4.1.1", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-10-23T18:45:15.554948Z", "id": "CVE-2024-20407", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-24T16:09:41.083Z"}}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2024-20407 (string)

assignerOrgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

state : PUBLISHED (string)

assignerShortName : cisco (string)

dateReserved : 2023-11-08T15:08:07.661Z (string)

datePublished : 2024-10-23T17:36:40.728Z (string)

dateUpdated : 2024-10-24T16:09:41.083Z (string)

}

containers : { »

cna : { »

providerMetadata : { »

orgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

shortName : cisco (string)

dateUpdated : 2024-10-23T17:36:40.728Z (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies on an affected system. Devices that are configured with Snort 2 are not affected by this vulnerability. This vulnerability is due to a logic error when handling embryonic (half-open) TCP connections. An attacker could exploit this vulnerability by sending a crafted traffic pattern through an affected device. A successful exploit could allow unintended traffic to enter the network protected by the affected device. (string)

}

]

affected : [ »

0 : { »

vendor : Cisco (string)

product : Cisco Firepower Threat Defense Software (string)

versions : [ »

0 : { »

version : 6.2.3 (string)

status : affected (string)

}

1 : { »

version : 6.2.3.1 (string)

status : affected (string)

}

2 : { »

version : 6.2.3.2 (string)

status : affected (string)

}

3 : { »

version : 6.2.3.3 (string)

status : affected (string)

}

4 : { »

version : 6.2.3.4 (string)

status : affected (string)

}

5 : { »

version : 6.2.3.5 (string)

status : affected (string)

}

6 : { »

version : 6.2.3.6 (string)

status : affected (string)

}

7 : { »

version : 6.2.3.7 (string)

status : affected (string)

}

8 : { »

version : 6.2.3.8 (string)

status : affected (string)

}

9 : { »

version : 6.2.3.10 (string)

status : affected (string)

}

10 : { »

version : 6.2.3.11 (string)

status : affected (string)

}

11 : { »

version : 6.2.3.9 (string)

status : affected (string)

}

12 : { »

version : 6.2.3.12 (string)

status : affected (string)

}

13 : { »

version : 6.2.3.13 (string)

status : affected (string)

}

14 : { »

version : 6.2.3.14 (string)

status : affected (string)

}

15 : { »

version : 6.2.3.15 (string)

status : affected (string)

}

16 : { »

version : 6.2.3.16 (string)

status : affected (string)

}

17 : { »

version : 6.2.3.17 (string)

status : affected (string)

}

18 : { »

version : 6.2.3.18 (string)

status : affected (string)

}

19 : { »

version : 6.6.0 (string)

status : affected (string)

}

20 : { »

version : 6.6.0.1 (string)

status : affected (string)

}

21 : { »

version : 6.6.1 (string)

status : affected (string)

}

22 : { »

version : 6.6.3 (string)

status : affected (string)

}

23 : { »

version : 6.6.4 (string)

status : affected (string)

}

24 : { »

version : 6.6.5 (string)

status : affected (string)

}

25 : { »

version : 6.6.5.1 (string)

status : affected (string)

}

26 : { »

version : 6.6.5.2 (string)

status : affected (string)

}

27 : { »

version : 6.6.7 (string)

status : affected (string)

}

28 : { »

version : 6.6.7.1 (string)

status : affected (string)

}

29 : { »

version : 6.6.7.2 (string)

status : affected (string)

}

30 : { »

version : 6.4.0 (string)

status : affected (string)

}

31 : { »

version : 6.4.0.1 (string)

status : affected (string)

}

32 : { »

version : 6.4.0.3 (string)

status : affected (string)

}

33 : { »

version : 6.4.0.2 (string)

status : affected (string)

}

34 : { »

version : 6.4.0.4 (string)

status : affected (string)

}

35 : { »

version : 6.4.0.5 (string)

status : affected (string)

}

36 : { »

version : 6.4.0.6 (string)

status : affected (string)

}

37 : { »

version : 6.4.0.7 (string)

status : affected (string)

}

38 : { »

version : 6.4.0.8 (string)

status : affected (string)

}

39 : { »

version : 6.4.0.9 (string)

status : affected (string)

}

40 : { »

version : 6.4.0.10 (string)

status : affected (string)

}

41 : { »

version : 6.4.0.11 (string)

status : affected (string)

}

42 : { »

version : 6.4.0.12 (string)

status : affected (string)

}

43 : { »

version : 6.4.0.13 (string)

status : affected (string)

}

44 : { »

version : 6.4.0.14 (string)

status : affected (string)

}

45 : { »

version : 6.4.0.15 (string)

status : affected (string)

}

46 : { »

version : 6.4.0.16 (string)

status : affected (string)

}

47 : { »

version : 6.4.0.17 (string)

status : affected (string)

}

48 : { »

version : 6.4.0.18 (string)

status : affected (string)

}

49 : { »

version : 6.7.0 (string)

status : affected (string)

}

50 : { »

version : 6.7.0.1 (string)

status : affected (string)

}

51 : { »

version : 6.7.0.2 (string)

status : affected (string)

}

52 : { »

version : 6.7.0.3 (string)

status : affected (string)

}

53 : { »

version : 7.0.0 (string)

status : affected (string)

}

54 : { »

version : 7.0.0.1 (string)

status : affected (string)

}

55 : { »

version : 7.0.1 (string)

status : affected (string)

}

56 : { »

version : 7.0.1.1 (string)

status : affected (string)

}

57 : { »

version : 7.0.2 (string)

status : affected (string)

}

58 : { »

version : 7.0.2.1 (string)

status : affected (string)

}

59 : { »

version : 7.0.3 (string)

status : affected (string)

}

60 : { »

version : 7.0.4 (string)

status : affected (string)

}

61 : { »

version : 7.0.5 (string)

status : affected (string)

}

62 : { »

version : 7.0.6 (string)

status : affected (string)

}

63 : { »

version : 7.0.6.1 (string)

status : affected (string)

}

64 : { »

version : 7.0.6.2 (string)

status : affected (string)

}

65 : { »

version : 7.1.0 (string)

status : affected (string)

}

66 : { »

version : 7.1.0.1 (string)

status : affected (string)

}

67 : { »

version : 7.1.0.2 (string)

status : affected (string)

}

68 : { »

version : 7.1.0.3 (string)

status : affected (string)

}

69 : { »

version : 7.2.0 (string)

status : affected (string)

}

70 : { »

version : 7.2.0.1 (string)

status : affected (string)

}

71 : { »

version : 7.2.1 (string)

status : affected (string)

}

72 : { »

version : 7.2.2 (string)

status : affected (string)

}

73 : { »

version : 7.2.3 (string)

status : affected (string)

}

74 : { »

version : 7.2.4 (string)

status : affected (string)

}

75 : { »

version : 7.2.4.1 (string)

status : affected (string)

}

76 : { »

version : 7.2.5 (string)

status : affected (string)

}

77 : { »

version : 7.2.5.1 (string)

status : affected (string)

}

78 : { »

version : 7.2.6 (string)

status : affected (string)

}

79 : { »

version : 7.2.7 (string)

status : affected (string)

}

80 : { »

version : 7.2.5.2 (string)

status : affected (string)

}

81 : { »

version : 7.2.8 (string)

status : affected (string)

}

82 : { »

version : 7.2.8.1 (string)

status : affected (string)

}

83 : { »

version : 7.3.0 (string)

status : affected (string)

}

84 : { »

version : 7.3.1 (string)

status : affected (string)

}

85 : { »

version : 7.3.1.1 (string)

status : affected (string)

}

86 : { »

version : 7.3.1.2 (string)

status : affected (string)

}

87 : { »

version : 7.4.0 (string)

status : affected (string)

}

88 : { »

version : 7.4.1 (string)

status : affected (string)

}

89 : { »

version : 7.4.1.1 (string)

status : affected (string)

}

]

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

description : Resource Management Errors (string)

type : cwe (string)

cweId : CWE-399 (string)

}

]

}

]

references : [ »

0 : { »

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-bypass-PTry37fX (string)

name : cisco-sa-snort-bypass-PTry37fX (string)

}

]

metrics : [ »

0 : { »

format : cvssV3_1 (string)

cvssV3_1 : { »

version : 3.1 (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N (string)

baseScore : 5.8 (number)

baseSeverity : MEDIUM (string)

attackVector : NETWORK (string)

attackComplexity : LOW (string)

privilegesRequired : NONE (string)

userInteraction : NONE (string)

scope : CHANGED (string)

confidentialityImpact : NONE (string)

integrityImpact : LOW (string)

availabilityImpact : NONE (string)

}

]

exploits : [ »

0 : { »

lang : en (string)

value : The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. (string)

}

]

source : { »

advisory : cisco-sa-snort-bypass-PTry37fX (string)

discovery : EXTERNAL (string)

defects : [ »

0 : CSCwi42291 (string)

]

}

adp : [ »

0 : { »

affected : [ »

0 : { »

vendor : cisco (string)

product : firepower_threat_defense_software (string)

cpes : [ »

0 : cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 6.2.3 (string)

status : affected (string)

lessThanOrEqual : 6.2.3.18 (string)

versionType : custom (string)

}

1 : { »

version : 6.4.0 (string)

status : affected (string)

lessThanOrEqual : 6.4.0.18 (string)

versionType : custom (string)

}

2 : { »

version : 6.6.0 (string)

status : affected (string)

lessThanOrEqual : 6.6.7.2 (string)

versionType : custom (string)

}

3 : { »

version : 6.7.0 (string)

status : affected (string)

lessThanOrEqual : 6.7.0.3 (string)

versionType : custom (string)

}

4 : { »

version : 7.0.0 (string)

status : affected (string)

lessThanOrEqual : 7.0.6.2 (string)

versionType : custom (string)

}

5 : { »

version : 7.1.0 (string)

status : affected (string)

lessThanOrEqual : 7.1.0.3 (string)

versionType : custom (string)

}

6 : { »

version : 7.2.0 (string)

status : affected (string)

lessThanOrEqual : 7.2.8.1 (string)

versionType : custom (string)

}

7 : { »

version : 7.3.0 (string)

status : affected (string)

lessThanOrEqual : 7.3.1.2 (string)

versionType : custom (string)

}

8 : { »

version : 7.4.0 (string)

status : affected (string)

lessThanOrEqual : 7.4.1.1 (string)

versionType : custom (string)

}

]

}

]

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

timestamp : 2024-10-23T18:45:15.554948Z (string)

id : CVE-2024-20407 (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : partial (string)

}

]

role : CISA Coordinator (string)

version : 2.0.3 (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-10-24T16:09:41.083Z (string)

}

]

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-20407", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-10-23T18:45:15.554948Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:*"], "vendor": "cisco", "product": "firepower_threat_defense_software", "versions": [{"status": "affected", "version": "6.2.3", "versionType": "custom", "lessThanOrEqual": "6.2.3.18"}, {"status": "affected", "version": "6.4.0", "versionType": "custom", "lessThanOrEqual": "6.4.0.18"}, {"status": "affected", "version": "6.6.0", "versionType": "custom", "lessThanOrEqual": "6.6.7.2"}, {"status": "affected", "version": "6.7.0", "versionType": "custom", "lessThanOrEqual": "6.7.0.3"}, {"status": "affected", "version": "7.0.0", "versionType": "custom", "lessThanOrEqual": "7.0.6.2"}, {"status": "affected", "version": "7.1.0", "versionType": "custom", "lessThanOrEqual": "7.1.0.3"}, {"status": "affected", "version": "7.2.0", "versionType": "custom", "lessThanOrEqual": "7.2.8.1"}, {"status": "affected", "version": "7.3.0", "versionType": "custom", "lessThanOrEqual": "7.3.1.2"}, {"status": "affected", "version": "7.4.0", "versionType": "custom", "lessThanOrEqual": "7.4.1.1"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-24T16:09:05.099Z"}}], "cna": {"source": {"defects": ["CSCwi42291"], "advisory": "cisco-sa-snort-bypass-PTry37fX", "discovery": "EXTERNAL"}, "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "Cisco", "product": "Cisco Firepower Threat Defense Software", "versions": [{"status": "affected", "version": "6.2.3"}, {"status": "affected", "version": "6.2.3.1"}, {"status": "affected", "version": "6.2.3.2"}, {"status": "affected", "version": "6.2.3.3"}, {"status": "affected", "version": "6.2.3.4"}, {"status": "affected", "version": "6.2.3.5"}, {"status": "affected", "version": "6.2.3.6"}, {"status": "affected", "version": "6.2.3.7"}, {"status": "affected", "version": "6.2.3.8"}, {"status": "affected", "version": "6.2.3.10"}, {"status": "affected", "version": "6.2.3.11"}, {"status": "affected", "version": "6.2.3.9"}, {"status": "affected", "version": "6.2.3.12"}, {"status": "affected", "version": "6.2.3.13"}, {"status": "affected", "version": "6.2.3.14"}, {"status": "affected", "version": "6.2.3.15"}, {"status": "affected", "version": "6.2.3.16"}, {"status": "affected", "version": "6.2.3.17"}, {"status": "affected", "version": "6.2.3.18"}, {"status": "affected", "version": "6.6.0"}, {"status": "affected", "version": "6.6.0.1"}, {"status": "affected", "version": "6.6.1"}, {"status": "affected", "version": "6.6.3"}, {"status": "affected", "version": "6.6.4"}, {"status": "affected", "version": "6.6.5"}, {"status": "affected", "version": "6.6.5.1"}, {"status": "affected", "version": "6.6.5.2"}, {"status": "affected", "version": "6.6.7"}, {"status": "affected", "version": "6.6.7.1"}, {"status": "affected", "version": "6.6.7.2"}, {"status": "affected", "version": "6.4.0"}, {"status": "affected", "version": "6.4.0.1"}, {"status": "affected", "version": "6.4.0.3"}, {"status": "affected", "version": "6.4.0.2"}, {"status": "affected", "version": "6.4.0.4"}, {"status": "affected", "version": "6.4.0.5"}, {"status": "affected", "version": "6.4.0.6"}, {"status": "affected", "version": "6.4.0.7"}, {"status": "affected", "version": "6.4.0.8"}, {"status": "affected", "version": "6.4.0.9"}, {"status": "affected", "version": "6.4.0.10"}, {"status": "affected", "version": "6.4.0.11"}, {"status": "affected", "version": "6.4.0.12"}, {"status": "affected", "version": "6.4.0.13"}, {"status": "affected", "version": "6.4.0.14"}, {"status": "affected", "version": "6.4.0.15"}, {"status": "affected", "version": "6.4.0.16"}, {"status": "affected", "version": "6.4.0.17"}, {"status": "affected", "version": "6.4.0.18"}, {"status": "affected", "version": "6.7.0"}, {"status": "affected", "version": "6.7.0.1"}, {"status": "affected", "version": "6.7.0.2"}, {"status": "affected", "version": "6.7.0.3"}, {"status": "affected", "version": "7.0.0"}, {"status": "affected", "version": "7.0.0.1"}, {"status": "affected", "version": "7.0.1"}, {"status": "affected", "version": "7.0.1.1"}, {"status": "affected", "version": "7.0.2"}, {"status": "affected", "version": "7.0.2.1"}, {"status": "affected", "version": "7.0.3"}, {"status": "affected", "version": "7.0.4"}, {"status": "affected", "version": "7.0.5"}, {"status": "affected", "version": "7.0.6"}, {"status": "affected", "version": "7.0.6.1"}, {"status": "affected", "version": "7.0.6.2"}, {"status": "affected", "version": "7.1.0"}, {"status": "affected", "version": "7.1.0.1"}, {"status": "affected", "version": "7.1.0.2"}, {"status": "affected", "version": "7.1.0.3"}, {"status": "affected", "version": "7.2.0"}, {"status": "affected", "version": "7.2.0.1"}, {"status": "affected", "version": "7.2.1"}, {"status": "affected", "version": "7.2.2"}, {"status": "affected", "version": "7.2.3"}, {"status": "affected", "version": "7.2.4"}, {"status": "affected", "version": "7.2.4.1"}, {"status": "affected", "version": "7.2.5"}, {"status": "affected", "version": "7.2.5.1"}, {"status": "affected", "version": "7.2.6"}, {"status": "affected", "version": "7.2.7"}, {"status": "affected", "version": "7.2.5.2"}, {"status": "affected", "version": "7.2.8"}, {"status": "affected", "version": "7.2.8.1"}, {"status": "affected", "version": "7.3.0"}, {"status": "affected", "version": "7.3.1"}, {"status": "affected", "version": "7.3.1.1"}, {"status": "affected", "version": "7.3.1.2"}, {"status": "affected", "version": "7.4.0"}, {"status": "affected", "version": "7.4.1"}, {"status": "affected", "version": "7.4.1.1"}]}], "exploits": [{"lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-bypass-PTry37fX", "name": "cisco-sa-snort-bypass-PTry37fX"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies on an affected system. Devices that are configured with Snort 2 are not affected by this vulnerability. \r\n\r This vulnerability is due to a logic error when handling embryonic (half-open) TCP connections. An attacker could exploit this vulnerability by sending a crafted traffic pattern through an affected device. A successful exploit could allow unintended traffic to enter the network protected by the affected device."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-399", "description": "Resource Management Errors"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-10-23T17:36:40.728Z"}}}, "cveMetadata": {"cveId": "CVE-2024-20407", "state": "PUBLISHED", "dateUpdated": "2024-10-24T16:09:41.083Z", "dateReserved": "2023-11-08T15:08:07.661Z", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2024-10-23T17:36:40.728Z", "assignerShortName": "cisco"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2024-20407 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-10-23T18:45:15.554948Z (string)

}

]

affected : [ »

0 : { »

cpes : [ »

0 : cpe:2.3:a:cisco:firepower_threat_defense_software:*:*:*:*:*:*:*:* (string)

]

vendor : cisco (string)

product : firepower_threat_defense_software (string)

versions : [ »

0 : { »

status : affected (string)

version : 6.2.3 (string)

versionType : custom (string)

lessThanOrEqual : 6.2.3.18 (string)

}

1 : { »

status : affected (string)

version : 6.4.0 (string)

versionType : custom (string)

lessThanOrEqual : 6.4.0.18 (string)

}

2 : { »

status : affected (string)

version : 6.6.0 (string)

versionType : custom (string)

lessThanOrEqual : 6.6.7.2 (string)

}

3 : { »

status : affected (string)

version : 6.7.0 (string)

versionType : custom (string)

lessThanOrEqual : 6.7.0.3 (string)

}

4 : { »

status : affected (string)

version : 7.0.0 (string)

versionType : custom (string)

lessThanOrEqual : 7.0.6.2 (string)

}

5 : { »

status : affected (string)

version : 7.1.0 (string)

versionType : custom (string)

lessThanOrEqual : 7.1.0.3 (string)

}

6 : { »

status : affected (string)

version : 7.2.0 (string)

versionType : custom (string)

lessThanOrEqual : 7.2.8.1 (string)

}

7 : { »

status : affected (string)

version : 7.3.0 (string)

versionType : custom (string)

lessThanOrEqual : 7.3.1.2 (string)

}

8 : { »

status : affected (string)

version : 7.4.0 (string)

versionType : custom (string)

lessThanOrEqual : 7.4.1.1 (string)

}

]

defaultStatus : unknown (string)

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-10-24T16:09:05.099Z (string)

}

]

cna : { »

source : { »

defects : [ »

0 : CSCwi42291 (string)

]

advisory : cisco-sa-snort-bypass-PTry37fX (string)

discovery : EXTERNAL (string)

}

metrics : [ »

0 : { »

format : cvssV3_1 (string)

cvssV3_1 : { »

scope : CHANGED (string)

version : 3.1 (string)

baseScore : 5.8 (number)

attackVector : NETWORK (string)

baseSeverity : MEDIUM (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N (string)

integrityImpact : LOW (string)

userInteraction : NONE (string)

attackComplexity : LOW (string)

availabilityImpact : NONE (string)

privilegesRequired : NONE (string)

confidentialityImpact : NONE (string)

}

]

affected : [ »

0 : { »

vendor : Cisco (string)

product : Cisco Firepower Threat Defense Software (string)

versions : [ »

0 : { »

status : affected (string)

version : 6.2.3 (string)

}

1 : { »

status : affected (string)

version : 6.2.3.1 (string)

}

2 : { »

status : affected (string)

version : 6.2.3.2 (string)

}

3 : { »

status : affected (string)

version : 6.2.3.3 (string)

}

4 : { »

status : affected (string)

version : 6.2.3.4 (string)

}

5 : { »

status : affected (string)

version : 6.2.3.5 (string)

}

6 : { »

status : affected (string)

version : 6.2.3.6 (string)

}

7 : { »

status : affected (string)

version : 6.2.3.7 (string)

}

8 : { »

status : affected (string)

version : 6.2.3.8 (string)

}

9 : { »

status : affected (string)

version : 6.2.3.10 (string)

}

10 : { »

status : affected (string)

version : 6.2.3.11 (string)

}

11 : { »

status : affected (string)

version : 6.2.3.9 (string)

}

12 : { »

status : affected (string)

version : 6.2.3.12 (string)

}

13 : { »

status : affected (string)

version : 6.2.3.13 (string)

}

14 : { »

status : affected (string)

version : 6.2.3.14 (string)

}

15 : { »

status : affected (string)

version : 6.2.3.15 (string)

}

16 : { »

status : affected (string)

version : 6.2.3.16 (string)

}

17 : { »

status : affected (string)

version : 6.2.3.17 (string)

}

18 : { »

status : affected (string)

version : 6.2.3.18 (string)

}

19 : { »

status : affected (string)

version : 6.6.0 (string)

}

20 : { »

status : affected (string)

version : 6.6.0.1 (string)

}

21 : { »

status : affected (string)

version : 6.6.1 (string)

}

22 : { »

status : affected (string)

version : 6.6.3 (string)

}

23 : { »

status : affected (string)

version : 6.6.4 (string)

}

24 : { »

status : affected (string)

version : 6.6.5 (string)

}

25 : { »

status : affected (string)

version : 6.6.5.1 (string)

}

26 : { »

status : affected (string)

version : 6.6.5.2 (string)

}

27 : { »

status : affected (string)

version : 6.6.7 (string)

}

28 : { »

status : affected (string)

version : 6.6.7.1 (string)

}

29 : { »

status : affected (string)

version : 6.6.7.2 (string)

}

30 : { »

status : affected (string)

version : 6.4.0 (string)

}

31 : { »

status : affected (string)

version : 6.4.0.1 (string)

}

32 : { »

status : affected (string)

version : 6.4.0.3 (string)

}

33 : { »

status : affected (string)

version : 6.4.0.2 (string)

}

34 : { »

status : affected (string)

version : 6.4.0.4 (string)

}

35 : { »

status : affected (string)

version : 6.4.0.5 (string)

}

36 : { »

status : affected (string)

version : 6.4.0.6 (string)

}

37 : { »

status : affected (string)

version : 6.4.0.7 (string)

}

38 : { »

status : affected (string)

version : 6.4.0.8 (string)

}

39 : { »

status : affected (string)

version : 6.4.0.9 (string)

}

40 : { »

status : affected (string)

version : 6.4.0.10 (string)

}

41 : { »

status : affected (string)

version : 6.4.0.11 (string)

}

42 : { »

status : affected (string)

version : 6.4.0.12 (string)

}

43 : { »

status : affected (string)

version : 6.4.0.13 (string)

}

44 : { »

status : affected (string)

version : 6.4.0.14 (string)

}

45 : { »

status : affected (string)

version : 6.4.0.15 (string)

}

46 : { »

status : affected (string)

version : 6.4.0.16 (string)

}

47 : { »

status : affected (string)

version : 6.4.0.17 (string)

}

48 : { »

status : affected (string)

version : 6.4.0.18 (string)

}

49 : { »

status : affected (string)

version : 6.7.0 (string)

}

50 : { »

status : affected (string)

version : 6.7.0.1 (string)

}

51 : { »

status : affected (string)

version : 6.7.0.2 (string)

}

52 : { »

status : affected (string)

version : 6.7.0.3 (string)

}

53 : { »

status : affected (string)

version : 7.0.0 (string)

}

54 : { »

status : affected (string)

version : 7.0.0.1 (string)

}

55 : { »

status : affected (string)

version : 7.0.1 (string)

}

56 : { »

status : affected (string)

version : 7.0.1.1 (string)

}

57 : { »

status : affected (string)

version : 7.0.2 (string)

}

58 : { »

status : affected (string)

version : 7.0.2.1 (string)

}

59 : { »

status : affected (string)

version : 7.0.3 (string)

}

60 : { »

status : affected (string)

version : 7.0.4 (string)

}

61 : { »

status : affected (string)

version : 7.0.5 (string)

}

62 : { »

status : affected (string)

version : 7.0.6 (string)

}

63 : { »

status : affected (string)

version : 7.0.6.1 (string)

}

64 : { »

status : affected (string)

version : 7.0.6.2 (string)

}

65 : { »

status : affected (string)

version : 7.1.0 (string)

}

66 : { »

status : affected (string)

version : 7.1.0.1 (string)

}

67 : { »

status : affected (string)

version : 7.1.0.2 (string)

}

68 : { »

status : affected (string)

version : 7.1.0.3 (string)

}

69 : { »

status : affected (string)

version : 7.2.0 (string)

}

70 : { »

status : affected (string)

version : 7.2.0.1 (string)

}

71 : { »

status : affected (string)

version : 7.2.1 (string)

}

72 : { »

status : affected (string)

version : 7.2.2 (string)

}

73 : { »

status : affected (string)

version : 7.2.3 (string)

}

74 : { »

status : affected (string)

version : 7.2.4 (string)

}

75 : { »

status : affected (string)

version : 7.2.4.1 (string)

}

76 : { »

status : affected (string)

version : 7.2.5 (string)

}

77 : { »

status : affected (string)

version : 7.2.5.1 (string)

}

78 : { »

status : affected (string)

version : 7.2.6 (string)

}

79 : { »

status : affected (string)

version : 7.2.7 (string)

}

80 : { »

status : affected (string)

version : 7.2.5.2 (string)

}

81 : { »

status : affected (string)

version : 7.2.8 (string)

}

82 : { »

status : affected (string)

version : 7.2.8.1 (string)

}

83 : { »

status : affected (string)

version : 7.3.0 (string)

}

84 : { »

status : affected (string)

version : 7.3.1 (string)

}

85 : { »

status : affected (string)

version : 7.3.1.1 (string)

}

86 : { »

status : affected (string)

version : 7.3.1.2 (string)

}

87 : { »

status : affected (string)

version : 7.4.0 (string)

}

88 : { »

status : affected (string)

version : 7.4.1 (string)

}

89 : { »

status : affected (string)

version : 7.4.1.1 (string)

}

]

}

]

exploits : [ »

0 : { »

lang : en (string)

value : The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. (string)

}

]

references : [ »

0 : { »

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-bypass-PTry37fX (string)

name : cisco-sa-snort-bypass-PTry37fX (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies on an affected system. Devices that are configured with Snort 2 are not affected by this vulnerability. This vulnerability is due to a logic error when handling embryonic (half-open) TCP connections. An attacker could exploit this vulnerability by sending a crafted traffic pattern through an affected device. A successful exploit could allow unintended traffic to enter the network protected by the affected device. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

type : cwe (string)

cweId : CWE-399 (string)

description : Resource Management Errors (string)

}

]

}

]

providerMetadata : { »

orgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

shortName : cisco (string)

dateUpdated : 2024-10-23T17:36:40.728Z (string)

}

cveMetadata : { »

cveId : CVE-2024-20407 (string)

state : PUBLISHED (string)

dateUpdated : 2024-10-24T16:09:41.083Z (string)

dateReserved : 2023-11-08T15:08:07.661Z (string)

assignerOrgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

datePublished : 2024-10-23T17:36:40.728Z (string)

assignerShortName : cisco (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies on an affected system. Devices that are configured with Snort 2 are not affected by this vulnerability. \r\n\r This vulnerability is due to a logic error when handling embryonic (half-open) TCP connections. An attacker could exploit this vulnerability by sending a crafted traffic pattern through an affected device. A successful exploit could allow unintended traffic to enter the network protected by the affected device."}, {"lang": "es", "value": "Una vulnerabilidad en la interacci\u00f3n entre la funci\u00f3n TCP Intercept y el motor de detecci\u00f3n Snort 3 en el software Cisco Firepower Threat Defense (FTD) podr\u00eda permitir que un atacante remoto no autenticado eluda las pol\u00edticas configuradas en un sistema afectado. Los dispositivos que est\u00e1n configurados con Snort 2 no se ven afectados por esta vulnerabilidad. Esta vulnerabilidad se debe a un error l\u00f3gico al manejar conexiones TCP embrionarias (semiabiertas). Un atacante podr\u00eda explotar esta vulnerabilidad enviando un patr\u00f3n de tr\u00e1fico manipulado a trav\u00e9s de un dispositivo afectado. Una explotaci\u00f3n exitosa podr\u00eda permitir que el tr\u00e1fico no deseado ingrese a la red protegida por el dispositivo afectado."}], "id": "CVE-2024-20407", "lastModified": "2024-10-25T12:56:36.827", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "ykramarz@cisco.com", "type": "Secondary"}]}, "published": "2024-10-23T18:15:08.413", "references": [{"source": "ykramarz@cisco.com", "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-bypass-PTry37fX"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-399"}], "source": "ykramarz@cisco.com", "type": "Secondary"}]}

{

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies on an affected system. Devices that are configured with Snort 2 are not affected by this vulnerability. This vulnerability is due to a logic error when handling embryonic (half-open) TCP connections. An attacker could exploit this vulnerability by sending a crafted traffic pattern through an affected device. A successful exploit could allow unintended traffic to enter the network protected by the affected device. (string)

}

1 : { »

lang : es (string)

value : Una vulnerabilidad en la interacción entre la función TCP Intercept y el motor de detección Snort 3 en el software Cisco Firepower Threat Defense (FTD) podría permitir que un atacante remoto no autenticado eluda las políticas configuradas en un sistema afectado. Los dispositivos que están configurados con Snort 2 no se ven afectados por esta vulnerabilidad. Esta vulnerabilidad se debe a un error lógico al manejar conexiones TCP embrionarias (semiabiertas). Un atacante podría explotar esta vulnerabilidad enviando un patrón de tráfico manipulado a través de un dispositivo afectado. Una explotación exitosa podría permitir que el tráfico no deseado ingrese a la red protegida por el dispositivo afectado. (string)

}

]

id : CVE-2024-20407 (string)

lastModified : 2024-10-25T12:56:36.827 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 5.8 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : NONE (string)

integrityImpact : LOW (string)

privilegesRequired : NONE (string)

scope : CHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 1.4 (number)

source : ykramarz@cisco.com (string)

type : Secondary (string)

}

]

}

published : 2024-10-23T18:15:08.413 (string)

references : [ »

0 : { »

source : ykramarz@cisco.com (string)

url : https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-bypass-PTry37fX (string)

}

]

sourceIdentifier : ykramarz@cisco.com (string)

vulnStatus : Awaiting Analysis (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-399 (string)

}

]

source : ykramarz@cisco.com (string)

type : Secondary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object