Vulnerability-Lookup

CVE-2025-20360 (GCVE-0-2025-20360)

Vulnerability from cvelistv5 – Published: 2025-10-15 16:19 – Updated: 2026-02-12 18:57

Title

Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerability

Summary

Multiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart. This vulnerability is due to a lack of complete error checking when the MIME fields of the HTTP header are parsed. An attacker could exploit this vulnerability by sending crafted HTTP packets through an established connection to be parsed by Snort 3. A successful exploit could allow the attacker to cause a DoS condition when the Snort 3 Detection Engine unexpectedly restarts.

Severity ?

5.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

CWE

CWE-805 - Buffer Access with Incorrect Length Value

Assigner

cisco

References

URL

FKIE_CVE-2025-20360

Vulnerability from fkie_nvd - Published: 2025-10-15 17:15 - Updated: 2026-02-12 19:15

Severity ?

5.8 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Summary

References

	URL	Tags
	psirt@cisco.com	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-mime-vulns-tTL8PgVH

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart.\r\n\r\nThis vulnerability is due to a lack of complete error checking when the MIME fields of the HTTP header are parsed. An attacker could exploit this vulnerability by sending crafted HTTP packets through an established connection to be parsed by Snort 3. A successful exploit could allow the attacker to cause a DoS condition when the Snort 3 Detection Engine unexpectedly restarts."
    }
  ],
  "id": "CVE-2025-20360",
  "lastModified": "2026-02-12T19:15:50.247",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 5.8,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4,
        "source": "psirt@cisco.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-10-15T17:15:49.433",
  "references": [
    {
      "source": "psirt@cisco.com",
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-mime-vulns-tTL8PgVH"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-805"
        }
      ],
      "source": "psirt@cisco.com",
      "type": "Secondary"
    }
  ]
}

GHSA-6W3W-CX38-4J8C

Vulnerability from github – Published: 2025-10-15 18:31 – Updated: 2025-10-15 18:31

Details

Multiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart.

This vulnerability is due to a lack of complete error checking when the MIME fields of the HTTP header are parsed. An attacker could exploit this vulnerability by sending crafted HTTP packets through an established connection to be parsed by Snort 3. A successful exploit could allow the attacker to cause a DoS condition when the Snort 3 Detection Engine unexpectedly restarts.

Severity ?

5.8 (Medium)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-20360"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-805"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-10-15T17:15:49Z",
    "severity": "MODERATE"
  },
  "details": "Multiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart.\n\n This vulnerability is due to a lack of complete error checking when the MIME fields of the HTTP header are parsed. An attacker could exploit this vulnerability by sending crafted HTTP packets through an established connection to be parsed by Snort 3. A successful exploit could allow the attacker to cause a DoS condition when the Snort 3 Detection Engine unexpectedly restarts.",
  "id": "GHSA-6w3w-cx38-4j8c",
  "modified": "2025-10-15T18:31:51Z",
  "published": "2025-10-15T18:31:51Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-20360"
    },
    {
      "type": "WEB",
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-mime-vulns-tTL8PgVH"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
      "type": "CVSS_V3"
    }
  ]
}

CISCO-SA-SNORT3-MIME-VULNS-TTL8PGVH

Vulnerability from csaf_cisco - Published: 2025-10-15 16:00 - Updated: 2026-02-12 18:38

Summary

Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities

Notes

Summary

Multiple Cisco products are affected by vulnerabilities in the HTTP Multipurpose Internet Mail Extensions (MIME) Decoder that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to leak possible sensitive information or to restart. For more information about these vulnerabilities, see the Details ["#details"] section of this advisory. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.

Vulnerable Products

For information about which products were affected by these vulnerabilities at the time of publication, see the following sections. Open Source Snort 3 At the time of publication, these vulnerabilities affected Open Source Snort 3. For information about which Snort releases were vulnerable at the time of publication, see the Fixed Software ["#fs"] section of this advisory. For more information on Snort, see the Snort website ["https://www.snort.org/"]. Cisco Secure Firewall Threat Defense Software At the time of publication, these vulnerabilities affected Cisco Secure Firewall Threat Defense (FTD) Software if Snort 3 was configured. For information about which Cisco software releases are vulnerable, see the Fixed Software ["#fs"] section of this advisory. Determine the Snort Configuration on Cisco Secure FTD Software On new installations of Cisco Secure FTD Software releases 7.0.0 and later, Snort 3 is running by default. On devices that were running Cisco Secure FTD Software Release 6.7.0 or earlier and were upgraded to Release 7.0.0 or later, Snort 2 is running by default. To determine if Snort 3 is running on Cisco Secure FTD Software, see Determine the Active Snort Version that Runs on Firepower Threat Defense (FTD) ["https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-threat-defense/220415-determine-the-active-snort-version-that.html"]. Snort 3 must be active for these vulnerabilities to be exploited. Cisco IOS XE Software At the time of publication, these vulnerabilities affected the following Cisco products if they were running a vulnerable release of Unified Threat Defense (UTD) Snort IPS Engine for Cisco IOS XE Software or UTD Engine for Cisco IOS XE SD-WAN Software: 1000 Series Integrated Services Routers (ISRs) 4000 Series ISRs Catalyst 8000V Edge Software Catalyst 8200 Series Edge Platforms Catalyst 8300 Series Edge Platforms Catalyst 8500L Edge Platforms Cloud Services Routers 1000V Integrated Services Virtual Routers Note: UTD is not installed on these devices by default. If the UTD file is not installed, the device is not affected by these vulnerabilities. For information about vulnerable and fixed releases, see the bug IDs at the top of this advisory. Determine Whether UTD Is Enabled To determine whether UTD is enabled on a device, use the show utd engine standard status command. If the output shows a Yes under Running, UTD is enabled. If there is no output, the device is not affected. The following example shows the output on a device that has UTD enabled: Router# show utd engine standard status Engine version : 1.0.19_SV2.9.16.1_XE17.3 Profile : Cloud-Low System memory : Usage : 6.00 % Status : Green Number of engines : 1 Engine Running Health Reason =========================================== Engine(#1): Yes Green None ======================================================= . . . Impact to Cisco Meraki Products At the time of publication, these vulnerabilities affected the following Cisco products if they were running a vulnerable release of Cisco Meraki software: MX64 MX64W MX65 MX65W MX67 MX67C MX67W MX68 MX68CW MX68W MX75 MX84 MX85 MX95 MX100 MX105 MX250 MX400 MX450 MX600 For information about which Cisco software releases were vulnerable at the time of publication, see the Fixed Software ["#fs"] section of this advisory. Impact to Other Cisco Products At the time of publication, these vulnerabilities affected Cisco Cyber Vision. For information about which Cisco software releases were vulnerable at the time of publication, see the Fixed Software ["#fs"] section of this advisory. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information.

Products Confirmed Not Vulnerable

Only products listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by these vulnerabilities. Cisco has confirmed that these vulnerabilities do not affect Open Source Snort 2. Cisco also has confirmed that these vulnerabilities do not affect the following Cisco products: Secure Firewall Adaptive Security Appliance (ASA) Software Secure Firewall Management Center (FMC) Software Umbrella Secure Internet Gateway (SIG)

Details

The vulnerabilities are not dependent on one another. Exploitation of one of the vulnerabilities is not required to exploit another vulnerability. In addition, a software release that is affected by one of the vulnerabilities may not be affected by the other vulnerabilities. Details about the vulnerabilities are as follows: CVE-2025-20359: Multiple Cisco Products Snort 3 MIME Information Disclosure or Denial of Service Vulnerability Multiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the disclosure of possible sensitive data or cause the Snort 3 Detection Engine to crash. This vulnerability is due to an error in the logic of buffer handling when the MIME fields of the HTTP header are parsed. This can result in a buffer under-read. An attacker could exploit this vulnerability by sending crafted HTTP packets through an established connection that is parsed by Snort 3. A successful exploit could allow the attacker to induce one of two possible outcomes: the unexpected restarting of the Snort 3 Detection Engine, which could cause a denial of service (DoS) condition, or information disclosure of sensitive information in the Snort 3 data stream. Due to the under-read condition, it is possible that sensitive information that is not valid connection data could be returned. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. Bug ID(s): CSCwq15864 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq15864"] CVE ID: CVE-2025-20359 Security Impact Rating (SIR): Medium CVSS Base Score: 6.5 CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2025-20360: Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerability Multiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart. This vulnerability is due to a lack of complete error checking when the MIME fields of the HTTP header are parsed. An attacker could exploit this vulnerability by sending crafted HTTP packets through an established connection to be parsed by Snort 3. A successful exploit could allow the attacker to cause a DoS condition when the Snort 3 Detection Engine unexpectedly restarts. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. Bug ID(s): CSCwo71401 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwo71401"] CVE ID: CVE-2025-20360 Security Impact Rating (SIR): Medium CVSS Base Score: 5.8 CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Workarounds

There are no workarounds that address these vulnerabilities.

Fixed Software

Cisco considers any workarounds and mitigations temporary solutions until an upgrade to a fixed software release is available. To fully remediate these vulnerabilities and avoid future exposure as described in this advisory, Cisco strongly recommends that customers upgrade to the fixed software indicated in this advisory. Fixed Releases For information about fixed releases, see the following sections. Open Source Snort Software At the time of publication, the release information in the following table was accurate. Snort 3 Release First Fixed Release for CVE-2025-20360 First Fixed Release for CVE-2025-20359 3.x 3.9.1.0 3.9.3.0 Cisco Secure Firewall ASA, Secure FMC, and Secure FTD Software To help customers determine their exposure to vulnerabilities in Cisco Secure Firewall ASA, Secure FMC, and Secure FTD Software, Cisco provides the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"]. This tool identifies any Cisco security advisories that impact a specific software release and the earliest release that fixes the vulnerabilities that are described in each advisory (“First Fixed”). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities that are described in all the advisories that the Software Checker identifies (“Combined First Fixed”). To use the tool, go to the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"] page and follow the instructions. Alternatively, use the following form to search for vulnerabilities that affect a specific software release. To use the form, follow these steps: Choose which advisories the tool will search—all advisories, only advisories with a Critical or High Security Impact Rating (SIR) ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr"], or only this advisory. Choose the appropriate software. Choose the appropriate platform. Enter a release number—for example, 9.20.3.4 for Cisco Secure Firewall ASA Software or 7.4.2 for Cisco Secure FTD Software. Click Check. Only this advisory All Critical and High advisories All advisories Cisco ASA Software Cisco FMC Software Cisco FTD Software Any Platform 3000 Series Industrial Security Appliances (ISA) ASA 5500-X Series Firewalls ASA Service Module Adaptive Security Virtual Appliance (ASAv) Firepower 1000 Series Firepower 2100 Series Firepower 4100 Series Firepower 9000 Series Firepower NGFW Virtual Secure Firewall 1200 Series Secure Firewall 3100 Series Secure Firewall 4200 Series Firepower Management Center Appliances Cisco IOS XE Software for UTD Software For information about fixed releases, see the bug IDs at the top of this advisory. Cisco Meraki Snort is integrated natively into Cisco Meraki security appliances as part of the threat protection services that are managed automatically through the Meraki Dashboard. No customer action is required to download Meraki firmware or the Snort 3 package for Meraki devices. As of February 5, 2026, all Meraki models listed in this advisory that are online and connected to the Cisco Meraki Dashboard have been automatically updated with Snort for vulnerabilities CVE-2025-20359 and CVE-2025-20360, regardless of current firmware version. Cyber Vision: CSCwq03467 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq03467"] and CSCwq42141 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq42141"] At the time of publication, the release information in the following table was accurate. The left column lists Cisco software releases, and the center and right columns indicate whether a release was affected by the vulnerabilities that are described in this advisory and which release included the fix for these vulnerabilities. Cisco Cyber Vision Release First Fixed Release for CVE-2025-20360 First Fixed Release for CVE-2025-20359 Earlier than 5.2 Migrate to a fixed release. Migrate to a fixed release. 5.2 Migrate to a fixed release. Migrate to a fixed release. 5.3 Not vulnerable. Not vulnerable. The Cisco Product Security Incident Response Team (PSIRT) validates only the affected and fixed release information that is documented in this advisory. Additional Resources For help determining the best Cisco Secure Firewall ASA, Secure FMC, or Secure FTD Software release, see the following Recommended Releases documents. If a security advisory recommends a later release, Cisco recommends following the advisory guidance. Cisco Secure Firewall ASA Compatibility ["https://www.cisco.com/c/en/us/td/docs/security/asa/compatibility/asamatrx.html"] Cisco Secure Firewall ASA Upgrade Guide ["https://www.cisco.com/c/en/us/td/docs/security/asa/upgrade/asa-upgrade/planning.html"] Cisco Secure Firewall Threat Defense Compatibility Guide ["https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/compatibility/threat-defense-compatibility.html"]

Vulnerability Policy

To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.

Exploitation and Public Announcements

The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.

Source

CVE-2025-20360: This vulnerability was found by Arunesh Shukla and Sanmith Prakash of Cisco during internal security testing. CVE-2025-20359: Cisco would like to thank Guy Lederfein of Trend Research of Trend Micro for reporting this vulnerability.

Legal Disclaimer

SOFTWARE DOWNLOADS AND TECHNICAL SUPPORT The Cisco Support and Downloads ["https://www.cisco.com/c/en/us/support/index.html"] page on Cisco.com provides information about licensing and downloads. This page can also display customer device support coverage for customers who use the My Devices tool. Please note that customers may download only software that was procured from Cisco directly or through a Cisco authorized reseller or partner and for which the license is still valid. Customers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco Technical Assistance Center (TAC) ["https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"]. Customers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade. When considering software upgrades ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"], customers are advised to regularly consult the advisories ["https://www.cisco.com/go/psirt"] for the relevant Cisco products to determine exposure and a complete upgrade solution. In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) ["https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"] or their contracted maintenance providers. LEGAL DISCLAIMER DETAILS CISCO DOES NOT MAKE ANY EXPRESS OR IMPLIED GUARANTEES OR WARRANTIES OF ANY KIND, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. WITHOUT LIMITING THE GENERALITY OF THE FOREGOING, CISCO DOES NOT GUARANTEE THE ACCURACY OR COMPLETENESS OF THIS INFORMATION. THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME. Copies or summaries of the information contained in this Security Advisory may lack important information or contain factual errors. Customers are advised to visit the Cisco Security Advisories ["https://www.cisco.com/go/psirt"] page for the most recent version of this Security Advisory. The Cisco Product Security Incident Response Team (PSIRT) assesses only the affected and fixed release information that is documented in this advisory. See the Cisco Security Vulnerability Policy ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"] for more information.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "summary": "CVE-2025-20360: This vulnerability was found by Arunesh Shukla and Sanmith Prakash of Cisco during internal security testing.\r\n\r\nCVE-2025-20359: Cisco would like to thank Guy Lederfein of Trend Research of Trend Micro for reporting this vulnerability."
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "notes": [
      {
        "category": "summary",
        "text": "Multiple Cisco products are affected by vulnerabilities in the HTTP Multipurpose Internet Mail Extensions (MIME) Decoder that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to leak possible sensitive information or to restart.\r\n\r\nFor more information about these vulnerabilities, see the Details [\"#details\"] section of this advisory.\r\n\r\nCisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.\r\n\r\n",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "For information about which products were affected by these vulnerabilities at the time of publication, see the following sections.\r\n  Open Source Snort 3\r\nAt the time of publication, these vulnerabilities affected Open Source Snort 3.\r\n\r\nFor information about which Snort releases were vulnerable at the time of publication, see the Fixed Software [\"#fs\"] section of this advisory. For more information on Snort, see the Snort website [\"https://www.snort.org/\"].\r\n  Cisco Secure Firewall Threat Defense Software\r\nAt the time of publication, these vulnerabilities affected Cisco Secure Firewall Threat Defense (FTD) Software if Snort 3 was configured.\r\n\r\nFor information about which Cisco software releases are vulnerable, see the Fixed Software [\"#fs\"] section of this advisory.\r\n\r\nDetermine the Snort Configuration on Cisco Secure FTD Software\r\n\r\nOn new installations of Cisco Secure FTD Software releases 7.0.0 and later, Snort 3 is running by default. On devices that were running Cisco Secure FTD Software Release 6.7.0 or earlier and were upgraded to Release 7.0.0 or later, Snort 2 is running by default.\r\n\r\nTo determine if Snort 3 is running on Cisco Secure FTD Software, see Determine the Active Snort Version that Runs on Firepower Threat Defense (FTD) [\"https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-threat-defense/220415-determine-the-active-snort-version-that.html\"]. Snort 3 must be active for these vulnerabilities to be exploited.\r\n  Cisco IOS XE Software\r\nAt the time of publication, these vulnerabilities affected the following Cisco products if they were running a vulnerable release of Unified Threat Defense (UTD) Snort IPS Engine for Cisco IOS XE Software or UTD Engine for Cisco IOS XE SD-WAN Software:\r\n\r\n1000 Series Integrated Services Routers (ISRs)\r\n4000 Series ISRs\r\nCatalyst 8000V Edge Software\r\nCatalyst 8200 Series Edge Platforms\r\nCatalyst 8300 Series Edge Platforms\r\nCatalyst 8500L Edge Platforms\r\nCloud Services Routers 1000V\r\nIntegrated Services Virtual Routers\r\n\r\nNote: UTD is not installed on these devices by default. If the UTD file is not installed, the device is not affected by these vulnerabilities.\r\n\r\nFor information about vulnerable and fixed releases, see the bug IDs at the top of this advisory.\r\n\r\nDetermine Whether UTD Is Enabled\r\n\r\nTo determine whether UTD is enabled on a device, use the show utd engine standard status command. If the output shows a Yes under Running, UTD is enabled. If there is no output, the device is not affected. The following example shows the output on a device that has UTD enabled:\r\n\r\n\r\nRouter# show utd engine standard status\r\nEngine version       : 1.0.19_SV2.9.16.1_XE17.3\r\nProfile              : Cloud-Low\r\nSystem memory        :\r\nUsage  : 6.00 %\r\nStatus : Green\r\nNumber of engines    : 1\r\nEngine        Running    Health     Reason\r\n===========================================\r\nEngine(#1):   Yes        Green      None\r\n=======================================================\r\n.\r\n.\r\n.\r\n\r\n   Impact to Cisco Meraki Products\r\nAt the time of publication, these vulnerabilities affected the following Cisco products if they were running a vulnerable release of Cisco Meraki software:\r\n\r\nMX64\r\nMX64W\r\nMX65\r\nMX65W\r\nMX67\r\nMX67C\r\nMX67W\r\n\r\nMX68\r\nMX68CW\r\nMX68W\r\nMX75\r\nMX84\r\nMX85\r\nMX95\r\n\r\nMX100\r\nMX105\r\nMX250\r\nMX400\r\nMX450\r\nMX600\r\n\r\nFor information about which Cisco software releases were vulnerable at the time of publication, see the Fixed Software [\"#fs\"] section of this advisory.\r\n  Impact to Other Cisco Products\r\nAt the time of publication, these vulnerabilities affected Cisco Cyber Vision.\r\n\r\nFor information about which Cisco software releases were vulnerable at the time of publication, see the Fixed Software [\"#fs\"] section of this advisory. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information.",
        "title": "Vulnerable Products"
      },
      {
        "category": "general",
        "text": "Only products listed in the Vulnerable Products [\"#vp\"] section of this advisory are known to be affected by these vulnerabilities.\r\n\r\nCisco has confirmed that these vulnerabilities do not affect Open Source Snort 2.\r\n\r\nCisco also has confirmed that these vulnerabilities do not affect the following Cisco products:\r\n\r\nSecure Firewall Adaptive Security Appliance (ASA) Software\r\nSecure Firewall Management Center (FMC) Software\r\nUmbrella Secure Internet Gateway (SIG)",
        "title": "Products Confirmed Not Vulnerable"
      },
      {
        "category": "general",
        "text": "The vulnerabilities are not dependent on one another. Exploitation of one of the vulnerabilities is not required to exploit another vulnerability. In addition, a software release that is affected by one of the vulnerabilities may not be affected by the other vulnerabilities.\r\n\r\nDetails about the vulnerabilities are as follows:\r\n\r\nCVE-2025-20359: Multiple Cisco Products Snort 3 MIME Information Disclosure or Denial of Service Vulnerability\r\n\r\nMultiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the disclosure of possible sensitive data or cause the Snort 3 Detection Engine to crash.\r\n\r\nThis vulnerability is due to an error in the logic of buffer handling when the MIME fields of the HTTP header are parsed. This can result in a buffer under-read. An attacker could exploit this vulnerability by sending crafted HTTP packets through an established connection that is parsed by Snort 3. A successful exploit could allow the attacker to induce one of two possible outcomes: the unexpected restarting of the Snort 3 Detection Engine, which could cause a denial of service (DoS) condition, or information disclosure of sensitive information in the Snort 3 data stream. Due to the under-read condition, it is possible that sensitive information that is not valid connection data could be returned.\r\n\r\nCisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\r\n\r\nBug ID(s): CSCwq15864 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq15864\"]\r\nCVE ID: CVE-2025-20359\r\nSecurity Impact Rating (SIR): Medium\r\nCVSS Base Score: 6.5\r\nCVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L\r\n\r\nCVE-2025-20360: Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerability\r\n\r\nMultiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart.\r\n\r\nThis vulnerability is due to a lack of complete error checking when the MIME fields of the HTTP header are parsed. An attacker could exploit this vulnerability by sending crafted HTTP packets through an established connection to be parsed by Snort 3. A successful exploit could allow the attacker to cause a DoS condition when the Snort 3 Detection Engine unexpectedly restarts.\r\n\r\nCisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\r\n\r\nBug ID(s): CSCwo71401 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwo71401\"]\r\nCVE ID: CVE-2025-20360\r\nSecurity Impact Rating (SIR): Medium\r\nCVSS Base Score: 5.8\r\nCVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
        "title": "Details"
      },
      {
        "category": "general",
        "text": "There are no workarounds that address these vulnerabilities.",
        "title": "Workarounds"
      },
      {
        "category": "general",
        "text": "Cisco considers any workarounds and mitigations temporary solutions until an upgrade to a fixed software release is available. To fully remediate these vulnerabilities and avoid future exposure as described in this advisory, Cisco strongly recommends that customers upgrade to the fixed software indicated in this advisory.\r\n      Fixed Releases\r\nFor information about fixed releases, see the following sections.\r\n\r\nOpen Source Snort Software\r\n\r\nAt the time of publication, the release information in the following table was accurate.\r\n        Snort 3 Release  First Fixed Release for CVE-2025-20360  First Fixed Release for CVE-2025-20359          3.x  3.9.1.0  3.9.3.0\r\n\r\nCisco Secure Firewall ASA, Secure FMC, and Secure FTD Software\r\n\r\nTo help customers determine their exposure to vulnerabilities in Cisco Secure Firewall ASA, Secure FMC, and Secure FTD Software, Cisco provides the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"]. This tool identifies any Cisco security advisories that impact a specific software release and the earliest release that fixes the vulnerabilities that are described in each advisory (\u201cFirst Fixed\u201d). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities that are described in all the advisories that the Software Checker identifies (\u201cCombined First Fixed\u201d).\r\n\r\nTo use the tool, go to the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"] page and follow the instructions. Alternatively, use the following form to search for vulnerabilities that affect a specific software release. To use the form, follow these steps:\r\n\r\nChoose which advisories the tool will search\u2014all advisories, only advisories with a Critical or High Security Impact Rating (SIR) [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr\"], or only this advisory.\r\nChoose the appropriate software.\r\nChoose the appropriate platform.\r\nEnter a release number\u2014for example, 9.20.3.4 for Cisco Secure Firewall ASA Software or 7.4.2 for Cisco Secure FTD Software.\r\nClick Check.\r\n      Only this advisory  All Critical and High advisories  All advisories    Cisco ASA Software  Cisco FMC Software  Cisco FTD Software    Any Platform  3000 Series Industrial Security Appliances (ISA)  ASA 5500-X Series Firewalls  ASA Service Module  Adaptive Security Virtual Appliance (ASAv)  Firepower 1000 Series  Firepower 2100 Series  Firepower 4100 Series  Firepower 9000 Series  Firepower NGFW Virtual  Secure Firewall 1200 Series  Secure Firewall 3100 Series  Secure Firewall 4200 Series  Firepower Management Center Appliances\r\n\r\n\r\n\r\n\r\nCisco IOS XE Software for UTD Software\r\n\r\nFor information about fixed releases, see the bug IDs at the top of this advisory.\r\n\r\nCisco Meraki\r\n\r\nSnort is integrated natively into Cisco Meraki security appliances as part of the threat protection services that are managed automatically through the Meraki Dashboard. No customer action is required to download Meraki firmware or the Snort 3 package for Meraki devices. As of February 5, 2026, all Meraki models listed in this advisory that are online and connected to the Cisco Meraki Dashboard have been automatically updated with Snort for vulnerabilities CVE-2025-20359 and CVE-2025-20360, regardless of current firmware version.\r\n\r\nCyber Vision: CSCwq03467 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq03467\"] and CSCwq42141 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq42141\"]\r\n\r\n At the time of publication, the release information in the following table was accurate.\r\n\r\nThe left column lists Cisco software releases, and the center and right columns indicate whether a release was affected by the vulnerabilities that are described in this advisory and which release included the fix for these vulnerabilities.\r\n        Cisco Cyber Vision Release  First Fixed Release for CVE-2025-20360  First Fixed Release for CVE-2025-20359          Earlier than 5.2  Migrate to a fixed release.  Migrate to a fixed release.      5.2  Migrate to a fixed release.  Migrate to a fixed release.      5.3  Not vulnerable.  Not vulnerable.\r\nThe Cisco Product Security Incident Response Team (PSIRT) validates only the affected and fixed release information that is documented in this advisory.\r\n\r\nAdditional Resources\r\n\r\nFor help determining the best Cisco Secure Firewall ASA, Secure FMC, or Secure FTD Software release, see the following Recommended Releases documents. If a security advisory recommends a later release, Cisco recommends following the advisory guidance.\r\n\r\nCisco Secure Firewall ASA Compatibility [\"https://www.cisco.com/c/en/us/td/docs/security/asa/compatibility/asamatrx.html\"]\r\nCisco Secure Firewall ASA Upgrade Guide [\"https://www.cisco.com/c/en/us/td/docs/security/asa/upgrade/asa-upgrade/planning.html\"]\r\nCisco Secure Firewall Threat Defense Compatibility Guide [\"https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/compatibility/threat-defense-compatibility.html\"]",
        "title": "Fixed Software"
      },
      {
        "category": "general",
        "text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
        "title": "Vulnerability Policy"
      },
      {
        "category": "general",
        "text": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.",
        "title": "Exploitation and Public Announcements"
      },
      {
        "category": "general",
        "text": "CVE-2025-20360: This vulnerability was found by Arunesh Shukla and Sanmith Prakash of Cisco during internal security testing.\r\n\r\nCVE-2025-20359: Cisco would like to thank Guy Lederfein of Trend Research of Trend Micro for reporting this vulnerability.",
        "title": "Source"
      },
      {
        "category": "legal_disclaimer",
        "text": "SOFTWARE DOWNLOADS AND TECHNICAL SUPPORT\r\n\r\nThe Cisco Support and Downloads [\"https://www.cisco.com/c/en/us/support/index.html\"] page on Cisco.com provides information about licensing and downloads. This page can also display customer device support coverage for customers who use the My Devices tool. Please note that customers may download only software that was procured from Cisco directly or through a Cisco authorized reseller or partner and for which the license is still valid.\r\n\r\nCustomers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco Technical Assistance Center (TAC) [\"https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html\"]. Customers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade.\r\n\r\nWhen considering software upgrades [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"], customers are advised to regularly consult the advisories [\"https://www.cisco.com/go/psirt\"] for the relevant Cisco products to determine exposure and a complete upgrade solution. In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) [\"https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html\"] or their contracted maintenance providers.\r\n    LEGAL DISCLAIMER DETAILS\r\n\r\nCISCO DOES NOT MAKE ANY EXPRESS OR IMPLIED GUARANTEES OR WARRANTIES OF ANY KIND, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. WITHOUT LIMITING THE GENERALITY OF THE FOREGOING, CISCO DOES NOT GUARANTEE THE ACCURACY OR COMPLETENESS OF THIS INFORMATION. THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.\r\n\r\nCopies or summaries of the information contained in this Security Advisory may lack important information or contain factual errors. Customers are advised to visit the Cisco Security Advisories [\"https://www.cisco.com/go/psirt\"] page for the most recent version of this Security Advisory. The Cisco Product Security Incident Response Team (PSIRT) assesses only the affected and fixed release information that is documented in this advisory. See the Cisco Security Vulnerability Policy [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"] for more information.",
        "title": "Legal Disclaimer"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "psirt@cisco.com",
      "issuing_authority": "Cisco PSIRT",
      "name": "Cisco",
      "namespace": "https://wwww.cisco.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities",
        "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-mime-vulns-tTL8PgVH"
      },
      {
        "category": "external",
        "summary": "Cisco Security Vulnerability Policy",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
      },
      {
        "category": "external",
        "summary": "Snort website",
        "url": "https://www.snort.org/"
      },
      {
        "category": "external",
        "summary": "Determine the Active Snort Version that Runs on Firepower Threat Defense (FTD)",
        "url": "https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-threat-defense/220415-determine-the-active-snort-version-that.html"
      },
      {
        "category": "external",
        "summary": "CSCwq15864",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq15864"
      },
      {
        "category": "external",
        "summary": "CSCwo71401",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwo71401"
      },
      {
        "category": "external",
        "summary": "Cisco Software Checker",
        "url": "https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"
      },
      {
        "category": "external",
        "summary": "Security Impact Rating (SIR)",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#asr"
      },
      {
        "category": "external",
        "summary": "CSCwq03467",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq03467"
      },
      {
        "category": "external",
        "summary": "CSCwq42141",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq42141"
      },
      {
        "category": "external",
        "summary": "Cisco Secure Firewall ASA Compatibility",
        "url": "https://www.cisco.com/c/en/us/td/docs/security/asa/compatibility/asamatrx.html"
      },
      {
        "category": "external",
        "summary": "Cisco Secure Firewall ASA Upgrade Guide",
        "url": "https://www.cisco.com/c/en/us/td/docs/security/asa/upgrade/asa-upgrade/planning.html"
      },
      {
        "category": "external",
        "summary": "Cisco Secure Firewall Threat Defense Compatibility Guide",
        "url": "https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/compatibility/threat-defense-compatibility.html"
      },
      {
        "category": "external",
        "summary": "Security Vulnerability Policy",
        "url": "http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html"
      },
      {
        "category": "external",
        "summary": "Cisco Support and Downloads",
        "url": "https://www.cisco.com/c/en/us/support/index.html"
      },
      {
        "category": "external",
        "summary": "Cisco Technical Assistance Center (TAC)",
        "url": "https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"
      },
      {
        "category": "external",
        "summary": "considering software upgrades",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
      },
      {
        "category": "external",
        "summary": "the advisories",
        "url": "https://www.cisco.com/go/psirt"
      }
    ],
    "title": "Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities",
    "tracking": {
      "current_release_date": "2026-02-12T18:38:13+00:00",
      "generator": {
        "date": "2026-02-12T18:38:18+00:00",
        "engine": {
          "name": "TVCE"
        }
      },
      "id": "cisco-sa-snort3-mime-vulns-tTL8PgVH",
      "initial_release_date": "2025-10-15T16:00:00+00:00",
      "revision_history": [
        {
          "date": "2025-10-15T15:57:31+00:00",
          "number": "1.0.0",
          "summary": "Initial public release."
        },
        {
          "date": "2026-02-12T18:38:13+00:00",
          "number": "1.1.0",
          "summary": "Updated fixed release information for Cisco Meraki."
        }
      ],
      "status": "final",
      "version": "1.1.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "7.3.0",
                    "product": {
                      "name": "7.3.0",
                      "product_id": "CSAFPID-292363"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "7.3.1",
                    "product": {
                      "name": "7.3.1",
                      "product_id": "CSAFPID-294962"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "7.3.1.1",
                    "product": {
                      "name": "7.3.1.1",
                      "product_id": "CSAFPID-300512"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "7.3.1.2",
                    "product": {
                      "name": "7.3.1.2",
                      "product_id": "CSAFPID-301705"
                    }
                  }
                ],
                "category": "product_version",
                "name": "7.3"
              },
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "7.4.0",
                    "product": {
                      "name": "7.4.0",
                      "product_id": "CSAFPID-300737"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "7.4.1",
                    "product": {
                      "name": "7.4.1",
                      "product_id": "CSAFPID-301109"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "7.4.1.1",
                    "product": {
                      "name": "7.4.1.1",
                      "product_id": "CSAFPID-301606"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "7.4.2",
                    "product": {
                      "name": "7.4.2",
                      "product_id": "CSAFPID-302686"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "7.4.2.1",
                    "product": {
                      "name": "7.4.2.1",
                      "product_id": "CSAFPID-302966"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "7.4.2.2",
                    "product": {
                      "name": "7.4.2.2",
                      "product_id": "CSAFPID-303334"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "7.4.2.3",
                    "product": {
                      "name": "7.4.2.3",
                      "product_id": "CSAFPID-305308"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "7.4.2.4",
                    "product": {
                      "name": "7.4.2.4",
                      "product_id": "CSAFPID-306639"
                    }
                  }
                ],
                "category": "product_version",
                "name": "7.4"
              },
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "7.6.0",
                    "product": {
                      "name": "7.6.0",
                      "product_id": "CSAFPID-302870"
                    }
                  },
                  {
                    "category": "service_pack",
                    "name": "7.6.1",
                    "product": {
                      "name": "7.6.1",
                      "product_id": "CSAFPID-305282"
                    }
                  }
                ],
                "category": "product_version",
                "name": "7.6"
              },
              {
                "branches": [
                  {
                    "category": "service_pack",
                    "name": "7.7.0",
                    "product": {
                      "name": "7.7.0",
                      "product_id": "CSAFPID-303356"
                    }
                  }
                ],
                "category": "product_version",
                "name": "7.7"
              }
            ],
            "category": "product_family",
            "name": "Cisco Secure Firewall Threat Defense (FTD) Software"
          },
          {
            "category": "product_family",
            "name": "Cisco Cyber Vision",
            "product": {
              "name": "Cisco Cyber Vision ",
              "product_id": "CSAFPID-278359"
            }
          },
          {
            "category": "product_family",
            "name": "Cisco UTD SNORT IPS Engine Software",
            "product": {
              "name": "Cisco UTD SNORT IPS Engine Software ",
              "product_id": "CSAFPID-279755"
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Firepower 2100 Series",
            "product": {
              "name": "Cisco Firepower 2100 Series",
              "product_id": "CSAFPID-277392"
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Firepower 1000 Series",
            "product": {
              "name": "Cisco Firepower 1000 Series",
              "product_id": "CSAFPID-277393"
            }
          },
          {
            "category": "product_name",
            "name": "Cisco 3000 Series Industrial Security Appliances (ISA)",
            "product": {
              "name": "Cisco 3000 Series Industrial Security Appliances (ISA)",
              "product_id": "CSAFPID-277438"
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Firepower 9000 Series",
            "product": {
              "name": "Cisco Firepower 9000 Series",
              "product_id": "CSAFPID-277440"
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Firepower 4100 Series",
            "product": {
              "name": "Cisco Firepower 4100 Series",
              "product_id": "CSAFPID-277441"
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Secure Firewall Threat Defense Virtual",
            "product": {
              "name": "Cisco Secure Firewall Threat Defense Virtual",
              "product_id": "CSAFPID-277464"
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Secure Firewall 3100 Series",
            "product": {
              "name": "Cisco Secure Firewall 3100 Series",
              "product_id": "CSAFPID-286865"
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Secure Firewall 4200 Series",
            "product": {
              "name": "Cisco Secure Firewall 4200 Series",
              "product_id": "CSAFPID-300754"
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Secure Firewall 1200 Series",
            "product": {
              "name": "Cisco Secure Firewall 1200 Series",
              "product_id": "CSAFPID-303206"
            }
          }
        ],
        "category": "vendor",
        "name": "Cisco"
      }
    ],
    "relationships": [
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.0 when installed on Cisco Firepower 2100 Series",
          "product_id": "CSAFPID-292363:277392"
        },
        "product_reference": "CSAFPID-292363",
        "relates_to_product_reference": "CSAFPID-277392"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.0 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-292363:277393"
        },
        "product_reference": "CSAFPID-292363",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.0 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-292363:277438"
        },
        "product_reference": "CSAFPID-292363",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.0 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-292363:277440"
        },
        "product_reference": "CSAFPID-292363",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.0 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-292363:277441"
        },
        "product_reference": "CSAFPID-292363",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.0 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-292363:277464"
        },
        "product_reference": "CSAFPID-292363",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.0 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-292363:286865"
        },
        "product_reference": "CSAFPID-292363",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1 when installed on Cisco Firepower 2100 Series",
          "product_id": "CSAFPID-294962:277392"
        },
        "product_reference": "CSAFPID-294962",
        "relates_to_product_reference": "CSAFPID-277392"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-294962:277393"
        },
        "product_reference": "CSAFPID-294962",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-294962:277438"
        },
        "product_reference": "CSAFPID-294962",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-294962:277440"
        },
        "product_reference": "CSAFPID-294962",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-294962:277441"
        },
        "product_reference": "CSAFPID-294962",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-294962:277464"
        },
        "product_reference": "CSAFPID-294962",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-294962:286865"
        },
        "product_reference": "CSAFPID-294962",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.1 when installed on Cisco Firepower 2100 Series",
          "product_id": "CSAFPID-300512:277392"
        },
        "product_reference": "CSAFPID-300512",
        "relates_to_product_reference": "CSAFPID-277392"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.1 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-300512:277393"
        },
        "product_reference": "CSAFPID-300512",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.1 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-300512:277438"
        },
        "product_reference": "CSAFPID-300512",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.1 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-300512:277440"
        },
        "product_reference": "CSAFPID-300512",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.1 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-300512:277441"
        },
        "product_reference": "CSAFPID-300512",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.1 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-300512:277464"
        },
        "product_reference": "CSAFPID-300512",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.1 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-300512:286865"
        },
        "product_reference": "CSAFPID-300512",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.2 when installed on Cisco Firepower 2100 Series",
          "product_id": "CSAFPID-301705:277392"
        },
        "product_reference": "CSAFPID-301705",
        "relates_to_product_reference": "CSAFPID-277392"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.2 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-301705:277393"
        },
        "product_reference": "CSAFPID-301705",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.2 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-301705:277438"
        },
        "product_reference": "CSAFPID-301705",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.2 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-301705:277440"
        },
        "product_reference": "CSAFPID-301705",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.2 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-301705:277441"
        },
        "product_reference": "CSAFPID-301705",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.2 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-301705:277464"
        },
        "product_reference": "CSAFPID-301705",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.3.1.2 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-301705:286865"
        },
        "product_reference": "CSAFPID-301705",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.0 when installed on Cisco Secure Firewall 4200 Series",
          "product_id": "CSAFPID-300737:300754"
        },
        "product_reference": "CSAFPID-300737",
        "relates_to_product_reference": "CSAFPID-300754"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1 when installed on Cisco Firepower 2100 Series",
          "product_id": "CSAFPID-301109:277392"
        },
        "product_reference": "CSAFPID-301109",
        "relates_to_product_reference": "CSAFPID-277392"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-301109:277393"
        },
        "product_reference": "CSAFPID-301109",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-301109:277438"
        },
        "product_reference": "CSAFPID-301109",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-301109:277440"
        },
        "product_reference": "CSAFPID-301109",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-301109:277441"
        },
        "product_reference": "CSAFPID-301109",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-301109:277464"
        },
        "product_reference": "CSAFPID-301109",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-301109:286865"
        },
        "product_reference": "CSAFPID-301109",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1 when installed on Cisco Secure Firewall 4200 Series",
          "product_id": "CSAFPID-301109:300754"
        },
        "product_reference": "CSAFPID-301109",
        "relates_to_product_reference": "CSAFPID-300754"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1.1 when installed on Cisco Firepower 2100 Series",
          "product_id": "CSAFPID-301606:277392"
        },
        "product_reference": "CSAFPID-301606",
        "relates_to_product_reference": "CSAFPID-277392"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1.1 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-301606:277393"
        },
        "product_reference": "CSAFPID-301606",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1.1 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-301606:277438"
        },
        "product_reference": "CSAFPID-301606",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1.1 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-301606:277440"
        },
        "product_reference": "CSAFPID-301606",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1.1 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-301606:277441"
        },
        "product_reference": "CSAFPID-301606",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1.1 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-301606:277464"
        },
        "product_reference": "CSAFPID-301606",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1.1 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-301606:286865"
        },
        "product_reference": "CSAFPID-301606",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1.1 when installed on Cisco Secure Firewall 4200 Series",
          "product_id": "CSAFPID-301606:300754"
        },
        "product_reference": "CSAFPID-301606",
        "relates_to_product_reference": "CSAFPID-300754"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2 when installed on Cisco Firepower 2100 Series",
          "product_id": "CSAFPID-302686:277392"
        },
        "product_reference": "CSAFPID-302686",
        "relates_to_product_reference": "CSAFPID-277392"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-302686:277393"
        },
        "product_reference": "CSAFPID-302686",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-302686:277438"
        },
        "product_reference": "CSAFPID-302686",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-302686:277440"
        },
        "product_reference": "CSAFPID-302686",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-302686:277441"
        },
        "product_reference": "CSAFPID-302686",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-302686:277464"
        },
        "product_reference": "CSAFPID-302686",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-302686:286865"
        },
        "product_reference": "CSAFPID-302686",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2 when installed on Cisco Secure Firewall 4200 Series",
          "product_id": "CSAFPID-302686:300754"
        },
        "product_reference": "CSAFPID-302686",
        "relates_to_product_reference": "CSAFPID-300754"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.1 when installed on Cisco Firepower 2100 Series",
          "product_id": "CSAFPID-302966:277392"
        },
        "product_reference": "CSAFPID-302966",
        "relates_to_product_reference": "CSAFPID-277392"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.1 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-302966:277393"
        },
        "product_reference": "CSAFPID-302966",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.1 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-302966:277438"
        },
        "product_reference": "CSAFPID-302966",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.1 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-302966:277440"
        },
        "product_reference": "CSAFPID-302966",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.1 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-302966:277441"
        },
        "product_reference": "CSAFPID-302966",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.1 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-302966:277464"
        },
        "product_reference": "CSAFPID-302966",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.1 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-302966:286865"
        },
        "product_reference": "CSAFPID-302966",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.1 when installed on Cisco Secure Firewall 4200 Series",
          "product_id": "CSAFPID-302966:300754"
        },
        "product_reference": "CSAFPID-302966",
        "relates_to_product_reference": "CSAFPID-300754"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.2 when installed on Cisco Firepower 2100 Series",
          "product_id": "CSAFPID-303334:277392"
        },
        "product_reference": "CSAFPID-303334",
        "relates_to_product_reference": "CSAFPID-277392"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.2 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-303334:277393"
        },
        "product_reference": "CSAFPID-303334",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.2 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-303334:277438"
        },
        "product_reference": "CSAFPID-303334",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.2 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-303334:277440"
        },
        "product_reference": "CSAFPID-303334",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.2 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-303334:277441"
        },
        "product_reference": "CSAFPID-303334",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.2 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-303334:277464"
        },
        "product_reference": "CSAFPID-303334",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.2 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-303334:286865"
        },
        "product_reference": "CSAFPID-303334",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.2 when installed on Cisco Secure Firewall 4200 Series",
          "product_id": "CSAFPID-303334:300754"
        },
        "product_reference": "CSAFPID-303334",
        "relates_to_product_reference": "CSAFPID-300754"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.3 when installed on Cisco Firepower 2100 Series",
          "product_id": "CSAFPID-305308:277392"
        },
        "product_reference": "CSAFPID-305308",
        "relates_to_product_reference": "CSAFPID-277392"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.3 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-305308:277393"
        },
        "product_reference": "CSAFPID-305308",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.3 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-305308:277438"
        },
        "product_reference": "CSAFPID-305308",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.3 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-305308:277440"
        },
        "product_reference": "CSAFPID-305308",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.3 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-305308:277441"
        },
        "product_reference": "CSAFPID-305308",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.3 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-305308:277464"
        },
        "product_reference": "CSAFPID-305308",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.3 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-305308:286865"
        },
        "product_reference": "CSAFPID-305308",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.3 when installed on Cisco Secure Firewall 4200 Series",
          "product_id": "CSAFPID-305308:300754"
        },
        "product_reference": "CSAFPID-305308",
        "relates_to_product_reference": "CSAFPID-300754"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.4 when installed on Cisco Firepower 2100 Series",
          "product_id": "CSAFPID-306639:277392"
        },
        "product_reference": "CSAFPID-306639",
        "relates_to_product_reference": "CSAFPID-277392"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.4 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-306639:277393"
        },
        "product_reference": "CSAFPID-306639",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.4 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-306639:277438"
        },
        "product_reference": "CSAFPID-306639",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.4 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-306639:277440"
        },
        "product_reference": "CSAFPID-306639",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.4 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-306639:277441"
        },
        "product_reference": "CSAFPID-306639",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.4 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-306639:277464"
        },
        "product_reference": "CSAFPID-306639",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.4 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-306639:286865"
        },
        "product_reference": "CSAFPID-306639",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.4 when installed on Cisco Secure Firewall 4200 Series",
          "product_id": "CSAFPID-306639:300754"
        },
        "product_reference": "CSAFPID-306639",
        "relates_to_product_reference": "CSAFPID-300754"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.0 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-302870:277393"
        },
        "product_reference": "CSAFPID-302870",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.0 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-302870:277438"
        },
        "product_reference": "CSAFPID-302870",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.0 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-302870:277440"
        },
        "product_reference": "CSAFPID-302870",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.0 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-302870:277441"
        },
        "product_reference": "CSAFPID-302870",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.0 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-302870:277464"
        },
        "product_reference": "CSAFPID-302870",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.0 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-302870:286865"
        },
        "product_reference": "CSAFPID-302870",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.0 when installed on Cisco Secure Firewall 4200 Series",
          "product_id": "CSAFPID-302870:300754"
        },
        "product_reference": "CSAFPID-302870",
        "relates_to_product_reference": "CSAFPID-300754"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.0 when installed on Cisco Secure Firewall 1200 Series",
          "product_id": "CSAFPID-302870:303206"
        },
        "product_reference": "CSAFPID-302870",
        "relates_to_product_reference": "CSAFPID-303206"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.1 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-305282:277393"
        },
        "product_reference": "CSAFPID-305282",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.1 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-305282:277438"
        },
        "product_reference": "CSAFPID-305282",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.1 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-305282:277440"
        },
        "product_reference": "CSAFPID-305282",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.1 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-305282:277441"
        },
        "product_reference": "CSAFPID-305282",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.1 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-305282:277464"
        },
        "product_reference": "CSAFPID-305282",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.1 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-305282:286865"
        },
        "product_reference": "CSAFPID-305282",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.1 when installed on Cisco Secure Firewall 4200 Series",
          "product_id": "CSAFPID-305282:300754"
        },
        "product_reference": "CSAFPID-305282",
        "relates_to_product_reference": "CSAFPID-300754"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.6.1 when installed on Cisco Secure Firewall 1200 Series",
          "product_id": "CSAFPID-305282:303206"
        },
        "product_reference": "CSAFPID-305282",
        "relates_to_product_reference": "CSAFPID-303206"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.7.0 when installed on Cisco Firepower 1000 Series",
          "product_id": "CSAFPID-303356:277393"
        },
        "product_reference": "CSAFPID-303356",
        "relates_to_product_reference": "CSAFPID-277393"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.7.0 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
          "product_id": "CSAFPID-303356:277438"
        },
        "product_reference": "CSAFPID-303356",
        "relates_to_product_reference": "CSAFPID-277438"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.7.0 when installed on Cisco Firepower 9000 Series",
          "product_id": "CSAFPID-303356:277440"
        },
        "product_reference": "CSAFPID-303356",
        "relates_to_product_reference": "CSAFPID-277440"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.7.0 when installed on Cisco Firepower 4100 Series",
          "product_id": "CSAFPID-303356:277441"
        },
        "product_reference": "CSAFPID-303356",
        "relates_to_product_reference": "CSAFPID-277441"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.7.0 when installed on Cisco Secure Firewall Threat Defense Virtual",
          "product_id": "CSAFPID-303356:277464"
        },
        "product_reference": "CSAFPID-303356",
        "relates_to_product_reference": "CSAFPID-277464"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.7.0 when installed on Cisco Secure Firewall 3100 Series",
          "product_id": "CSAFPID-303356:286865"
        },
        "product_reference": "CSAFPID-303356",
        "relates_to_product_reference": "CSAFPID-286865"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.7.0 when installed on Cisco Secure Firewall 4200 Series",
          "product_id": "CSAFPID-303356:300754"
        },
        "product_reference": "CSAFPID-303356",
        "relates_to_product_reference": "CSAFPID-300754"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Cisco Secure Firewall Threat Defense (FTD) Software 7.7.0 when installed on Cisco Secure Firewall 1200 Series",
          "product_id": "CSAFPID-303356:303206"
        },
        "product_reference": "CSAFPID-303356",
        "relates_to_product_reference": "CSAFPID-303206"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-20360",
      "ids": [
        {
          "system_name": "Cisco Bug ID",
          "text": "CSCwq42161"
        },
        {
          "system_name": "Cisco Bug ID",
          "text": "CSCwq03467"
        },
        {
          "system_name": "Cisco Bug ID",
          "text": "CSCwo71401"
        }
      ],
      "notes": [
        {
          "category": "other",
          "text": "Complete.",
          "title": "Affected Product Comprehensiveness"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-279755",
          "CSAFPID-278359",
          "CSAFPID-292363:277392",
          "CSAFPID-292363:277393",
          "CSAFPID-292363:277438",
          "CSAFPID-292363:277440",
          "CSAFPID-292363:277441",
          "CSAFPID-292363:277464",
          "CSAFPID-292363:286865",
          "CSAFPID-294962:277392",
          "CSAFPID-294962:277393",
          "CSAFPID-294962:277438",
          "CSAFPID-294962:277440",
          "CSAFPID-294962:277441",
          "CSAFPID-294962:277464",
          "CSAFPID-294962:286865",
          "CSAFPID-300512:277392",
          "CSAFPID-300512:277393",
          "CSAFPID-300512:277438",
          "CSAFPID-300512:277440",
          "CSAFPID-300512:277441",
          "CSAFPID-300512:277464",
          "CSAFPID-300512:286865",
          "CSAFPID-300737:300754",
          "CSAFPID-301109:277392",
          "CSAFPID-301109:277393",
          "CSAFPID-301109:277438",
          "CSAFPID-301109:277440",
          "CSAFPID-301109:277441",
          "CSAFPID-301109:277464",
          "CSAFPID-301109:286865",
          "CSAFPID-301109:300754",
          "CSAFPID-301606:277392",
          "CSAFPID-301606:277393",
          "CSAFPID-301606:277438",
          "CSAFPID-301606:277440",
          "CSAFPID-301606:277441",
          "CSAFPID-301606:277464",
          "CSAFPID-301606:286865",
          "CSAFPID-301606:300754",
          "CSAFPID-301705:277392",
          "CSAFPID-301705:277393",
          "CSAFPID-301705:277438",
          "CSAFPID-301705:277440",
          "CSAFPID-301705:277441",
          "CSAFPID-301705:277464",
          "CSAFPID-301705:286865",
          "CSAFPID-302686:277392",
          "CSAFPID-302686:277393",
          "CSAFPID-302686:277438",
          "CSAFPID-302686:277440",
          "CSAFPID-302686:277441",
          "CSAFPID-302686:277464",
          "CSAFPID-302686:286865",
          "CSAFPID-302686:300754",
          "CSAFPID-302870:277393",
          "CSAFPID-302870:277438",
          "CSAFPID-302870:277440",
          "CSAFPID-302870:277441",
          "CSAFPID-302870:277464",
          "CSAFPID-302870:286865",
          "CSAFPID-302870:300754",
          "CSAFPID-302870:303206",
          "CSAFPID-302966:277392",
          "CSAFPID-302966:277393",
          "CSAFPID-302966:277438",
          "CSAFPID-302966:277440",
          "CSAFPID-302966:277441",
          "CSAFPID-302966:277464",
          "CSAFPID-302966:286865",
          "CSAFPID-302966:300754",
          "CSAFPID-303334:277392",
          "CSAFPID-303334:277393",
          "CSAFPID-303334:277438",
          "CSAFPID-303334:277440",
          "CSAFPID-303334:277441",
          "CSAFPID-303334:277464",
          "CSAFPID-303334:286865",
          "CSAFPID-303334:300754",
          "CSAFPID-303356:277393",
          "CSAFPID-303356:277438",
          "CSAFPID-303356:277440",
          "CSAFPID-303356:277441",
          "CSAFPID-303356:277464",
          "CSAFPID-303356:286865",
          "CSAFPID-303356:300754",
          "CSAFPID-303356:303206",
          "CSAFPID-305282:277393",
          "CSAFPID-305282:277438",
          "CSAFPID-305282:277440",
          "CSAFPID-305282:277441",
          "CSAFPID-305282:277464",
          "CSAFPID-305282:286865",
          "CSAFPID-305282:300754",
          "CSAFPID-305282:303206",
          "CSAFPID-305308:277392",
          "CSAFPID-305308:277393",
          "CSAFPID-305308:277438",
          "CSAFPID-305308:277440",
          "CSAFPID-305308:277441",
          "CSAFPID-305308:277464",
          "CSAFPID-305308:286865",
          "CSAFPID-305308:300754",
          "CSAFPID-306639:277392",
          "CSAFPID-306639:277393",
          "CSAFPID-306639:277438",
          "CSAFPID-306639:277440",
          "CSAFPID-306639:277441",
          "CSAFPID-306639:277464",
          "CSAFPID-306639:286865",
          "CSAFPID-306639:300754"
        ]
      },
      "release_date": "2025-10-15T16:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Cisco has released software updates that address this vulnerability.",
          "product_ids": [
            "CSAFPID-278359",
            "CSAFPID-292363:277392",
            "CSAFPID-292363:277393",
            "CSAFPID-292363:277438",
            "CSAFPID-292363:277440",
            "CSAFPID-292363:277441",
            "CSAFPID-292363:277464",
            "CSAFPID-292363:286865",
            "CSAFPID-294962:277392",
            "CSAFPID-294962:277393",
            "CSAFPID-294962:277438",
            "CSAFPID-294962:277440",
            "CSAFPID-294962:277441",
            "CSAFPID-294962:277464",
            "CSAFPID-294962:286865",
            "CSAFPID-300512:277392",
            "CSAFPID-300512:277393",
            "CSAFPID-300512:277438",
            "CSAFPID-300512:277440",
            "CSAFPID-300512:277441",
            "CSAFPID-300512:277464",
            "CSAFPID-300512:286865",
            "CSAFPID-300737:300754",
            "CSAFPID-301109:277392",
            "CSAFPID-301109:277393",
            "CSAFPID-301109:277438",
            "CSAFPID-301109:277440",
            "CSAFPID-301109:277441",
            "CSAFPID-301109:277464",
            "CSAFPID-301109:286865",
            "CSAFPID-301109:300754",
            "CSAFPID-301606:277392",
            "CSAFPID-301606:277393",
            "CSAFPID-301606:277438",
            "CSAFPID-301606:277440",
            "CSAFPID-301606:277441",
            "CSAFPID-301606:277464",
            "CSAFPID-301606:286865",
            "CSAFPID-301606:300754",
            "CSAFPID-301705:277392",
            "CSAFPID-301705:277393",
            "CSAFPID-301705:277438",
            "CSAFPID-301705:277440",
            "CSAFPID-301705:277441",
            "CSAFPID-301705:277464",
            "CSAFPID-301705:286865",
            "CSAFPID-302686:277392",
            "CSAFPID-302686:277393",
            "CSAFPID-302686:277438",
            "CSAFPID-302686:277440",
            "CSAFPID-302686:277441",
            "CSAFPID-302686:277464",
            "CSAFPID-302686:286865",
            "CSAFPID-302686:300754",
            "CSAFPID-302870:277393",
            "CSAFPID-302870:277438",
            "CSAFPID-302870:277440",
            "CSAFPID-302870:277441",
            "CSAFPID-302870:277464",
            "CSAFPID-302870:286865",
            "CSAFPID-302870:300754",
            "CSAFPID-302870:303206",
            "CSAFPID-302966:277392",
            "CSAFPID-302966:277393",
            "CSAFPID-302966:277438",
            "CSAFPID-302966:277440",
            "CSAFPID-302966:277441",
            "CSAFPID-302966:277464",
            "CSAFPID-302966:286865",
            "CSAFPID-302966:300754",
            "CSAFPID-303334:277392",
            "CSAFPID-303334:277393",
            "CSAFPID-303334:277438",
            "CSAFPID-303334:277440",
            "CSAFPID-303334:277441",
            "CSAFPID-303334:277464",
            "CSAFPID-303334:286865",
            "CSAFPID-303334:300754",
            "CSAFPID-303356:277393",
            "CSAFPID-303356:277438",
            "CSAFPID-303356:277440",
            "CSAFPID-303356:277441",
            "CSAFPID-303356:277464",
            "CSAFPID-303356:286865",
            "CSAFPID-303356:300754",
            "CSAFPID-303356:303206",
            "CSAFPID-305282:277393",
            "CSAFPID-305282:277438",
            "CSAFPID-305282:277440",
            "CSAFPID-305282:277441",
            "CSAFPID-305282:277464",
            "CSAFPID-305282:286865",
            "CSAFPID-305282:300754",
            "CSAFPID-305282:303206",
            "CSAFPID-305308:277392",
            "CSAFPID-305308:277393",
            "CSAFPID-305308:277438",
            "CSAFPID-305308:277440",
            "CSAFPID-305308:277441",
            "CSAFPID-305308:277464",
            "CSAFPID-305308:286865",
            "CSAFPID-305308:300754",
            "CSAFPID-306639:277392",
            "CSAFPID-306639:277393",
            "CSAFPID-306639:277438",
            "CSAFPID-306639:277440",
            "CSAFPID-306639:277441",
            "CSAFPID-306639:277464",
            "CSAFPID-306639:286865",
            "CSAFPID-306639:300754",
            "CSAFPID-279755"
          ],
          "url": "https://software.cisco.com"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-279755",
            "CSAFPID-278359",
            "CSAFPID-292363:277392",
            "CSAFPID-292363:277393",
            "CSAFPID-292363:277438",
            "CSAFPID-292363:277440",
            "CSAFPID-292363:277441",
            "CSAFPID-292363:277464",
            "CSAFPID-292363:286865",
            "CSAFPID-294962:277392",
            "CSAFPID-294962:277393",
            "CSAFPID-294962:277438",
            "CSAFPID-294962:277440",
            "CSAFPID-294962:277441",
            "CSAFPID-294962:277464",
            "CSAFPID-294962:286865",
            "CSAFPID-300512:277392",
            "CSAFPID-300512:277393",
            "CSAFPID-300512:277438",
            "CSAFPID-300512:277440",
            "CSAFPID-300512:277441",
            "CSAFPID-300512:277464",
            "CSAFPID-300512:286865",
            "CSAFPID-300737:300754",
            "CSAFPID-301109:277392",
            "CSAFPID-301109:277393",
            "CSAFPID-301109:277438",
            "CSAFPID-301109:277440",
            "CSAFPID-301109:277441",
            "CSAFPID-301109:277464",
            "CSAFPID-301109:286865",
            "CSAFPID-301109:300754",
            "CSAFPID-301606:277392",
            "CSAFPID-301606:277393",
            "CSAFPID-301606:277438",
            "CSAFPID-301606:277440",
            "CSAFPID-301606:277441",
            "CSAFPID-301606:277464",
            "CSAFPID-301606:286865",
            "CSAFPID-301606:300754",
            "CSAFPID-301705:277392",
            "CSAFPID-301705:277393",
            "CSAFPID-301705:277438",
            "CSAFPID-301705:277440",
            "CSAFPID-301705:277441",
            "CSAFPID-301705:277464",
            "CSAFPID-301705:286865",
            "CSAFPID-302686:277392",
            "CSAFPID-302686:277393",
            "CSAFPID-302686:277438",
            "CSAFPID-302686:277440",
            "CSAFPID-302686:277441",
            "CSAFPID-302686:277464",
            "CSAFPID-302686:286865",
            "CSAFPID-302686:300754",
            "CSAFPID-302870:277393",
            "CSAFPID-302870:277438",
            "CSAFPID-302870:277440",
            "CSAFPID-302870:277441",
            "CSAFPID-302870:277464",
            "CSAFPID-302870:286865",
            "CSAFPID-302870:300754",
            "CSAFPID-302870:303206",
            "CSAFPID-302966:277392",
            "CSAFPID-302966:277393",
            "CSAFPID-302966:277438",
            "CSAFPID-302966:277440",
            "CSAFPID-302966:277441",
            "CSAFPID-302966:277464",
            "CSAFPID-302966:286865",
            "CSAFPID-302966:300754",
            "CSAFPID-303334:277392",
            "CSAFPID-303334:277393",
            "CSAFPID-303334:277438",
            "CSAFPID-303334:277440",
            "CSAFPID-303334:277441",
            "CSAFPID-303334:277464",
            "CSAFPID-303334:286865",
            "CSAFPID-303334:300754",
            "CSAFPID-303356:277393",
            "CSAFPID-303356:277438",
            "CSAFPID-303356:277440",
            "CSAFPID-303356:277441",
            "CSAFPID-303356:277464",
            "CSAFPID-303356:286865",
            "CSAFPID-303356:300754",
            "CSAFPID-303356:303206",
            "CSAFPID-305282:277393",
            "CSAFPID-305282:277438",
            "CSAFPID-305282:277440",
            "CSAFPID-305282:277441",
            "CSAFPID-305282:277464",
            "CSAFPID-305282:286865",
            "CSAFPID-305282:300754",
            "CSAFPID-305282:303206",
            "CSAFPID-305308:277392",
            "CSAFPID-305308:277393",
            "CSAFPID-305308:277438",
            "CSAFPID-305308:277440",
            "CSAFPID-305308:277441",
            "CSAFPID-305308:277464",
            "CSAFPID-305308:286865",
            "CSAFPID-305308:300754",
            "CSAFPID-306639:277392",
            "CSAFPID-306639:277393",
            "CSAFPID-306639:277438",
            "CSAFPID-306639:277440",
            "CSAFPID-306639:277441",
            "CSAFPID-306639:277464",
            "CSAFPID-306639:286865",
            "CSAFPID-306639:300754"
          ]
        }
      ],
      "title": "Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerability"
    },
    {
      "cve": "CVE-2025-20359",
      "ids": [
        {
          "system_name": "Cisco Bug ID",
          "text": "CSCwq15864"
        },
        {
          "system_name": "Cisco Bug ID",
          "text": "CSCwq42141"
        },
        {
          "system_name": "Cisco Bug ID",
          "text": "CSCwq42153"
        }
      ],
      "notes": [
        {
          "category": "other",
          "text": "Complete.",
          "title": "Affected Product Comprehensiveness"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-301109:277392",
          "CSAFPID-301109:277393",
          "CSAFPID-301109:277438",
          "CSAFPID-301109:277440",
          "CSAFPID-301109:277441",
          "CSAFPID-301109:277464",
          "CSAFPID-301109:286865",
          "CSAFPID-301109:300754",
          "CSAFPID-301606:277392",
          "CSAFPID-301606:277393",
          "CSAFPID-301606:277438",
          "CSAFPID-301606:277440",
          "CSAFPID-301606:277441",
          "CSAFPID-301606:277464",
          "CSAFPID-301606:286865",
          "CSAFPID-301606:300754",
          "CSAFPID-302686:277392",
          "CSAFPID-302686:277393",
          "CSAFPID-302686:277438",
          "CSAFPID-302686:277440",
          "CSAFPID-302686:277441",
          "CSAFPID-302686:277464",
          "CSAFPID-302686:286865",
          "CSAFPID-302686:300754",
          "CSAFPID-302870:277393",
          "CSAFPID-302870:277438",
          "CSAFPID-302870:277440",
          "CSAFPID-302870:277441",
          "CSAFPID-302870:277464",
          "CSAFPID-302870:286865",
          "CSAFPID-302870:300754",
          "CSAFPID-302870:303206",
          "CSAFPID-302966:277392",
          "CSAFPID-302966:277393",
          "CSAFPID-302966:277438",
          "CSAFPID-302966:277440",
          "CSAFPID-302966:277441",
          "CSAFPID-302966:277464",
          "CSAFPID-302966:286865",
          "CSAFPID-302966:300754",
          "CSAFPID-303334:277392",
          "CSAFPID-303334:277393",
          "CSAFPID-303334:277438",
          "CSAFPID-303334:277440",
          "CSAFPID-303334:277441",
          "CSAFPID-303334:277464",
          "CSAFPID-303334:286865",
          "CSAFPID-303334:300754",
          "CSAFPID-303356:277393",
          "CSAFPID-303356:277438",
          "CSAFPID-303356:277440",
          "CSAFPID-303356:277441",
          "CSAFPID-303356:277464",
          "CSAFPID-303356:286865",
          "CSAFPID-303356:300754",
          "CSAFPID-303356:303206",
          "CSAFPID-305282:277393",
          "CSAFPID-305282:277438",
          "CSAFPID-305282:277440",
          "CSAFPID-305282:277441",
          "CSAFPID-305282:277464",
          "CSAFPID-305282:286865",
          "CSAFPID-305282:300754",
          "CSAFPID-305282:303206",
          "CSAFPID-305308:277392",
          "CSAFPID-305308:277393",
          "CSAFPID-305308:277438",
          "CSAFPID-305308:277440",
          "CSAFPID-305308:277441",
          "CSAFPID-305308:277464",
          "CSAFPID-305308:286865",
          "CSAFPID-305308:300754",
          "CSAFPID-306639:277392",
          "CSAFPID-306639:277393",
          "CSAFPID-306639:277438",
          "CSAFPID-306639:277440",
          "CSAFPID-306639:277441",
          "CSAFPID-306639:277464",
          "CSAFPID-306639:286865",
          "CSAFPID-306639:300754",
          "CSAFPID-278359",
          "CSAFPID-279755"
        ]
      },
      "release_date": "2025-10-15T16:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Cisco has released software updates that address this vulnerability.",
          "product_ids": [
            "CSAFPID-278359",
            "CSAFPID-301109:277392",
            "CSAFPID-301109:277393",
            "CSAFPID-301109:277438",
            "CSAFPID-301109:277440",
            "CSAFPID-301109:277441",
            "CSAFPID-301109:277464",
            "CSAFPID-301109:286865",
            "CSAFPID-301109:300754",
            "CSAFPID-301606:277392",
            "CSAFPID-301606:277393",
            "CSAFPID-301606:277438",
            "CSAFPID-301606:277440",
            "CSAFPID-301606:277441",
            "CSAFPID-301606:277464",
            "CSAFPID-301606:286865",
            "CSAFPID-301606:300754",
            "CSAFPID-302686:277392",
            "CSAFPID-302686:277393",
            "CSAFPID-302686:277438",
            "CSAFPID-302686:277440",
            "CSAFPID-302686:277441",
            "CSAFPID-302686:277464",
            "CSAFPID-302686:286865",
            "CSAFPID-302686:300754",
            "CSAFPID-302870:277393",
            "CSAFPID-302870:277438",
            "CSAFPID-302870:277440",
            "CSAFPID-302870:277441",
            "CSAFPID-302870:277464",
            "CSAFPID-302870:286865",
            "CSAFPID-302870:300754",
            "CSAFPID-302870:303206",
            "CSAFPID-302966:277392",
            "CSAFPID-302966:277393",
            "CSAFPID-302966:277438",
            "CSAFPID-302966:277440",
            "CSAFPID-302966:277441",
            "CSAFPID-302966:277464",
            "CSAFPID-302966:286865",
            "CSAFPID-302966:300754",
            "CSAFPID-303334:277392",
            "CSAFPID-303334:277393",
            "CSAFPID-303334:277438",
            "CSAFPID-303334:277440",
            "CSAFPID-303334:277441",
            "CSAFPID-303334:277464",
            "CSAFPID-303334:286865",
            "CSAFPID-303334:300754",
            "CSAFPID-303356:277393",
            "CSAFPID-303356:277438",
            "CSAFPID-303356:277440",
            "CSAFPID-303356:277441",
            "CSAFPID-303356:277464",
            "CSAFPID-303356:286865",
            "CSAFPID-303356:300754",
            "CSAFPID-303356:303206",
            "CSAFPID-305282:277393",
            "CSAFPID-305282:277438",
            "CSAFPID-305282:277440",
            "CSAFPID-305282:277441",
            "CSAFPID-305282:277464",
            "CSAFPID-305282:286865",
            "CSAFPID-305282:300754",
            "CSAFPID-305282:303206",
            "CSAFPID-305308:277392",
            "CSAFPID-305308:277393",
            "CSAFPID-305308:277438",
            "CSAFPID-305308:277440",
            "CSAFPID-305308:277441",
            "CSAFPID-305308:277464",
            "CSAFPID-305308:286865",
            "CSAFPID-305308:300754",
            "CSAFPID-306639:277392",
            "CSAFPID-306639:277393",
            "CSAFPID-306639:277438",
            "CSAFPID-306639:277440",
            "CSAFPID-306639:277441",
            "CSAFPID-306639:277464",
            "CSAFPID-306639:286865",
            "CSAFPID-306639:300754",
            "CSAFPID-279755"
          ],
          "url": "https://software.cisco.com"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-301109:277392",
            "CSAFPID-301109:277393",
            "CSAFPID-301109:277438",
            "CSAFPID-301109:277440",
            "CSAFPID-301109:277441",
            "CSAFPID-301109:277464",
            "CSAFPID-301109:286865",
            "CSAFPID-301109:300754",
            "CSAFPID-301606:277392",
            "CSAFPID-301606:277393",
            "CSAFPID-301606:277438",
            "CSAFPID-301606:277440",
            "CSAFPID-301606:277441",
            "CSAFPID-301606:277464",
            "CSAFPID-301606:286865",
            "CSAFPID-301606:300754",
            "CSAFPID-302686:277392",
            "CSAFPID-302686:277393",
            "CSAFPID-302686:277438",
            "CSAFPID-302686:277440",
            "CSAFPID-302686:277441",
            "CSAFPID-302686:277464",
            "CSAFPID-302686:286865",
            "CSAFPID-302686:300754",
            "CSAFPID-302870:277393",
            "CSAFPID-302870:277438",
            "CSAFPID-302870:277440",
            "CSAFPID-302870:277441",
            "CSAFPID-302870:277464",
            "CSAFPID-302870:286865",
            "CSAFPID-302870:300754",
            "CSAFPID-302870:303206",
            "CSAFPID-302966:277392",
            "CSAFPID-302966:277393",
            "CSAFPID-302966:277438",
            "CSAFPID-302966:277440",
            "CSAFPID-302966:277441",
            "CSAFPID-302966:277464",
            "CSAFPID-302966:286865",
            "CSAFPID-302966:300754",
            "CSAFPID-303334:277392",
            "CSAFPID-303334:277393",
            "CSAFPID-303334:277438",
            "CSAFPID-303334:277440",
            "CSAFPID-303334:277441",
            "CSAFPID-303334:277464",
            "CSAFPID-303334:286865",
            "CSAFPID-303334:300754",
            "CSAFPID-303356:277393",
            "CSAFPID-303356:277438",
            "CSAFPID-303356:277440",
            "CSAFPID-303356:277441",
            "CSAFPID-303356:277464",
            "CSAFPID-303356:286865",
            "CSAFPID-303356:300754",
            "CSAFPID-303356:303206",
            "CSAFPID-305282:277393",
            "CSAFPID-305282:277438",
            "CSAFPID-305282:277440",
            "CSAFPID-305282:277441",
            "CSAFPID-305282:277464",
            "CSAFPID-305282:286865",
            "CSAFPID-305282:300754",
            "CSAFPID-305282:303206",
            "CSAFPID-305308:277392",
            "CSAFPID-305308:277393",
            "CSAFPID-305308:277438",
            "CSAFPID-305308:277440",
            "CSAFPID-305308:277441",
            "CSAFPID-305308:277464",
            "CSAFPID-305308:286865",
            "CSAFPID-305308:300754",
            "CSAFPID-306639:277392",
            "CSAFPID-306639:277393",
            "CSAFPID-306639:277438",
            "CSAFPID-306639:277440",
            "CSAFPID-306639:277441",
            "CSAFPID-306639:277464",
            "CSAFPID-306639:286865",
            "CSAFPID-306639:300754",
            "CSAFPID-278359",
            "CSAFPID-279755"
          ]
        }
      ],
      "title": "Multiple Cisco Products Snort 3 MIME Information Disclosure or Denial of Service Vulnerability"
    }
  ]
}

WID-SEC-W-2025-2312

Vulnerability from csaf_certbund - Published: 2025-10-15 22:00 - Updated: 2025-10-15 22:00

Summary

Cisco Mehrere Produkte: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Cisco Secure Firewall Threat Defense ist eine Sicherheitslösung, die Funktionen wie Firewall, Intrusion Prevention und erweiterten Malware-Schutz in einer einzigen Appliance integriert. Cisco Internetwork Operating System (IOS) ist ein Betriebssystem, das für Cisco Geräte wie z. B. Router und Switches eingesetzt wird. Die Cisco Meraki MX-Serie sind cloudverwaltete Sicherheits- und SD-WAN-Appliances Snort ist ein freies Network Intrusion Prevention System (NIPS) und ein Network Intrusion Detection System (NIDS) der Firma Sourcefire.

Angriff

Ein Angreifer kann mehrere Schwachstellen in Cisco Secure Firewall Threat Defense, Cisco IOS XE, Cisco Meraki MX und Snort ausnutzen, um einen Denial of Service Angriff durchzuführen, und um Informationen offenzulegen.

Betroffene Betriebssysteme

- Linux - Sonstiges - UNIX - Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Cisco Secure Firewall Threat Defense ist eine Sicherheitsl\u00f6sung, die Funktionen wie Firewall, Intrusion Prevention und erweiterten Malware-Schutz in einer einzigen Appliance integriert.\r\nCisco Internetwork Operating System (IOS) ist ein Betriebssystem, das f\u00fcr Cisco Ger\u00e4te wie z. B. Router und Switches eingesetzt wird.\r\nDie Cisco Meraki MX-Serie sind cloudverwaltete Sicherheits- und SD-WAN-Appliances\r\nSnort ist ein freies Network Intrusion Prevention System (NIPS) und ein Network Intrusion Detection System (NIDS) der Firma Sourcefire.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Cisco Secure Firewall Threat Defense, Cisco IOS XE, Cisco Meraki MX und Snort ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren, und um Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2312 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2312.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2312 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2312"
      },
      {
        "category": "external",
        "summary": "Cisco Security Bulletin vom 2025-10-15",
        "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-mime-vulns-tTL8PgVH"
      }
    ],
    "source_lang": "en-US",
    "title": "Cisco Mehrere Produkte: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-10-15T22:00:00.000+00:00",
      "generator": {
        "date": "2025-10-16T08:58:25.113+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-2312",
      "initial_release_date": "2025-10-15T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-10-15T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Cisco IOS XE",
            "product": {
              "name": "Cisco IOS XE",
              "product_id": "T047716",
              "product_identification_helper": {
                "cpe": "cpe:/o:cisco:ios_xe:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Meraki MX",
            "product": {
              "name": "Cisco Meraki MX",
              "product_id": "T047717",
              "product_identification_helper": {
                "cpe": "cpe:/h:cisco:meraki_mx:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Secure Firewall Threat Defense",
            "product": {
              "name": "Cisco Secure Firewall Threat Defense",
              "product_id": "T047715",
              "product_identification_helper": {
                "cpe": "cpe:/a:cisco:secure_firewall_threat_defense:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Cisco"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c3.9.3.0",
                "product": {
                  "name": "Open Source Snort \u003c3.9.3.0",
                  "product_id": "T047718"
                }
              },
              {
                "category": "product_version",
                "name": "3.9.3.0",
                "product": {
                  "name": "Open Source Snort 3.9.3.0",
                  "product_id": "T047718-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:snort:snort:3.9.3.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Snort"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-20359",
      "product_status": {
        "known_affected": [
          "T047717",
          "T047718",
          "T047715",
          "T047716"
        ]
      },
      "release_date": "2025-10-15T22:00:00.000+00:00",
      "title": "CVE-2025-20359"
    },
    {
      "cve": "CVE-2025-20360",
      "product_status": {
        "known_affected": [
          "T047717",
          "T047718",
          "T047715",
          "T047716"
        ]
      },
      "release_date": "2025-10-15T22:00:00.000+00:00",
      "title": "CVE-2025-20360"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-20360 (GCVE-0-2025-20360)

FKIE_CVE-2025-20360

GHSA-6W3W-CX38-4J8C

CISCO-SA-SNORT3-MIME-VULNS-TTL8PGVH

WID-SEC-W-2025-2312

Tags

Sightings

Nomenclature