← Back

CVE-2024-20351

nvd nist
Published: Oct 23, 2024Modified: Aug 11, 2025

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

A vulnerability in the TCP/IP traffic handling function of the Snort Detection Engine of Cisco Firepower Threat Defense (FTD) Software and Cisco FirePOWER Services could allow an unauthenticated, remote attacker to cause legitimate network traffic to be dropped, resulting in a denial of service (DoS) condition. This vulnerability is due to the improper handling of TCP/IP network traffic. An attacker could exploit this vulnerability by sending a large amount of TCP/IP network traffic through the affected device. A successful exploit could allow the attacker to cause the Cisco FTD device to drop network traffic, resulting in a DoS condition. The affected device must be rebooted to resolve the DoS condition.

Affected (85)

Cisco
1 product
Firepower Threat Defense Software
Configuration A
85 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Firepower Threat Defense Software
Version 6.2.3.10
Firepower Threat Defense Software
Version 6.2.3.11
Firepower Threat Defense Software
Version 6.2.3.12
Firepower Threat Defense Software
Version 6.2.3.13
Firepower Threat Defense Software
Version 6.2.3.14
Firepower Threat Defense Software
Version 6.2.3.15
Firepower Threat Defense Software
Version 6.2.3.16
Firepower Threat Defense Software
Version 6.2.3.17
Firepower Threat Defense Software
Version 6.2.3.18
Firepower Threat Defense Software
Version 6.2.3.1
Firepower Threat Defense Software
Version 6.2.3.2
Firepower Threat Defense Software
Version 6.2.3.3
Firepower Threat Defense Software
Version 6.2.3.4
Firepower Threat Defense Software
Version 6.2.3.5
Firepower Threat Defense Software
Version 6.2.3.6
Firepower Threat Defense Software
Version 6.2.3.7
Firepower Threat Defense Software
Version 6.2.3.8
Firepower Threat Defense Software
Version 6.2.3.9
Firepower Threat Defense Software
Version 6.2.3
Firepower Threat Defense Software
Version 6.4.0.10
Firepower Threat Defense Software
Version 6.4.0.11
Firepower Threat Defense Software
Version 6.4.0.12
Firepower Threat Defense Software
Version 6.4.0.13
Firepower Threat Defense Software
Version 6.4.0.14
Firepower Threat Defense Software
Version 6.4.0.15
Firepower Threat Defense Software
Version 6.4.0.16
Firepower Threat Defense Software
Version 6.4.0.17
Firepower Threat Defense Software
Version 6.4.0.18
Firepower Threat Defense Software
Version 6.4.0.1
Firepower Threat Defense Software
Version 6.4.0.2
Firepower Threat Defense Software
Version 6.4.0.3
Firepower Threat Defense Software
Version 6.4.0.4
Firepower Threat Defense Software
Version 6.4.0.5
Firepower Threat Defense Software
Version 6.4.0.6
Firepower Threat Defense Software
Version 6.4.0.7
Firepower Threat Defense Software
Version 6.4.0.8
Firepower Threat Defense Software
Version 6.4.0.9
Firepower Threat Defense Software
Version 6.4.0
Firepower Threat Defense Software
Version 6.6.0.1
Firepower Threat Defense Software
Version 6.6.0
Firepower Threat Defense Software
Version 6.6.1
Firepower Threat Defense Software
Version 6.6.3
Firepower Threat Defense Software
Version 6.6.4
Firepower Threat Defense Software
Version 6.6.5.1
Firepower Threat Defense Software
Version 6.6.5.2
Firepower Threat Defense Software
Version 6.6.5
Firepower Threat Defense Software
Version 6.6.7.1
Firepower Threat Defense Software
Version 6.6.7.2
Firepower Threat Defense Software
Version 6.6.7
Firepower Threat Defense Software
Version 6.7.0.1
Firepower Threat Defense Software
Version 6.7.0.2
Firepower Threat Defense Software
Version 6.7.0.3
Firepower Threat Defense Software
Version 6.7.0
Firepower Threat Defense Software
Version 7.0.0.1
Firepower Threat Defense Software
Version 7.0.0
Firepower Threat Defense Software
Version 7.0.1.1
Firepower Threat Defense Software
Version 7.0.1
Firepower Threat Defense Software
Version 7.0.2.1
Firepower Threat Defense Software
Version 7.0.2
Firepower Threat Defense Software
Version 7.0.3
Firepower Threat Defense Software
Version 7.0.4
Firepower Threat Defense Software
Version 7.0.5
Firepower Threat Defense Software
Version 7.0.6.1
Firepower Threat Defense Software
Version 7.0.6
Firepower Threat Defense Software
Version 7.1.0.1
Firepower Threat Defense Software
Version 7.1.0.2
Firepower Threat Defense Software
Version 7.1.0.3
Firepower Threat Defense Software
Version 7.1.0
Firepower Threat Defense Software
Version 7.2.0.1
Firepower Threat Defense Software
Version 7.2.0
Firepower Threat Defense Software
Version 7.2.1
Firepower Threat Defense Software
Version 7.2.2
Firepower Threat Defense Software
Version 7.2.3
Firepower Threat Defense Software
Version 7.2.4.1
Firepower Threat Defense Software
Version 7.2.4
Firepower Threat Defense Software
Version 7.2.5.1
Firepower Threat Defense Software
Version 7.2.5.2
Firepower Threat Defense Software
Version 7.2.5
Firepower Threat Defense Software
Version 7.3.0
Firepower Threat Defense Software
Version 7.3.1.1
Firepower Threat Defense Software
Version 7.3.1.2
Firepower Threat Defense Software
Version 7.3.1
Firepower Threat Defense Software
Version 7.4.0
Firepower Threat Defense Software
Version 7.4.1.1
Firepower Threat Defense Software
Version 7.4.1

Related CWEs

CWE-400
Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (4)

Source: psirt@cisco.com
Broken Link
Source: psirt@cisco.com
Broken Link
Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Vendor Advisory

Timeline

No history available yet.