A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause an unexpected reload of the device. This vulnerability is due to insufficient input validation of SNMP packets. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device using IPv4 or IPv6. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. This vulnerability affects all versions of SNMP (versions 1, 2c, and 3) and requires a valid SNMP community string or valid SNMPv3 user credentials.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HCisco Adaptive Security Appliance Software
OSCisco9.14.19.14.1.109.14.1.159.14.1.199.14.1.309.14.1.69.14.29.14.2.139.14.2.159.14.2.49.14.2.89.14.39.14.3.19.14.3.119.14.3.13+ 82 więcejCisco Firepower Threat Defense
APPCisco6.6.06.6.0.16.6.1
Related vulnerabilities
RCE jako root w Cisco ASA i FTD poprzez podatny serwer VPN web
RCE w web services Cisco ASA, FTD, IOS, IOS XE, IOS XR przez HTTP
RCE w podsystemie SSH Cisco ASA — wykonanie poleceń jako root
Cisco FTD: statyczne konta z zakodowanymi hasłami umożliwiają nieautoryzowany dostęp
A vulnerability in the Kerberos authentication feature of Cisco Adaptive Security Appliance (ASA) Software cou...