CVE-2026-20057: Cisco Secure Firewall Threat Defense Software Snort 3 Visual Basic for Application Denial of Service Vulnerability

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-20057

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Cisco Secure Firewall Threat Defense Software Snort 3 Visual Basic for Application Denial of Service Vulnerability

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple Cisco products are affected by a vulnerability in the Snort 3 Visual Basic for Applications (VBA) feature which could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash.    This vulnerability is due to lack of proper error checking when decompressing VBA data. An attacker could exploit this vulnerability by sending a crafted VBA data to the Snort 3 Detection Engine on the targeted device. A successful exploit could allow the attacker to cause the Snort 3 Detection Engine to unexpectedly restart causing a a denial of service (DoS) condition.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Source: NVD (National Vulnerability Database)

Vulnerability Type

除零错误

Source: NVD (National Vulnerability Database)

Vulnerability Title

Cisco IOS XE和Cisco Secure Firewall Threat Defense 数字错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Cisco IOS XE和Cisco Secure Firewall Threat Defense都是美国思科（Cisco）公司的产品。Cisco IOS XE是一个操作系统。用于企业有线和无线访问，汇聚，核心和WAN的单一操作系统，Cisco IOS XE降低了业务和网络的复杂性。Cisco Secure Firewall Threat Defense是一个集成式防火墙平台。 Cisco IOS XE和Cisco Secure Firewall Threat Defense存在数字错误漏洞，该漏洞源于解

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Cisco	Cisco Cyber Vision	3.0.0	-
Cisco	Cisco Secure Firewall Threat Defense (FTD) Software	7.2.0	-
Cisco	Cisco UTD SNORT IPS Engine Software	17.12.1a	-

II. Public POCs for CVE-2026-20057

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-20057

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same product: Cisco Cyber Vision

Same vendor: Cisco

Same weakness: CWE-369

V. Comments for CVE-2026-20057

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2026-20057

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-20057

III. Intelligence Information for CVE-2026-20057

IV. Related Vulnerabilities

V. Comments for CVE-2026-20057

Leave a comment