Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an unauthenticated, remote attacker to bypass a configured Secure Sockets Layer (SSL) Access Control (AC) policy to block SSL traffic. The vulnerability is due to the incorrect handling of TCP SSL packets received out of order. An attacker could exploit this vulnerability by sending a crafted SSL connection through the affected device. A successful exploit could allow the attacker to bypass a configured SSL AC policy to block SSL traffic. Cisco Bug IDs: CSCvg09316.
CVSS Information
N/A
Vulnerability Type
保护机制失效
Vulnerability Title
Cisco Firepower Threat Defense detection引擎安全漏洞
Vulnerability Description
Cisco Firepower Threat Defense是美国思科(Cisco)公司的一套运行在防火墙中的软件。detection engine是其中的一个检测引擎。 Cisco Firepower Threat Defense中的detection引擎存在安全漏洞,该漏洞源于程序没有正确的处理接收到的乱序数据包。远程攻击者可利用该漏洞绕过已配置的安全套接层协议层访问控制策略。
CVSS Information
N/A
Vulnerability Type
N/A