cnvd-2020-31110
Vulnerability from cnvd
Title: Cisco Firepower Threat Defense和Adaptive Security Appliances Software拒绝服务漏洞(CNVD-2020-31110)
Description:
Cisco Firepower Threat Defense(FTD)和Cisco Adaptive Security Appliances Software(ASA Software)都是美国思科(Cisco)公司的产品。Cisco Firepower Threat Defense是一套提供下一代防火墙服务的统一软件。Cisco Adaptive Security Appliances Software是一套防火墙和网络安全平台。该平台提供了对数据和网络资源的高度安全的访问等功能。
Cisco ASA和FTD中的IKEv1功能存在拒绝服务漏洞,该漏洞源于程序未能正确管理系统内存,攻击者可通过发送恶意的IKEv1流量利用该漏洞造成拒绝服务。
Severity: 高
Patch Name: Cisco Firepower Threat Defense和Adaptive Security Appliances Software拒绝服务漏洞(CNVD-2020-31110)的补丁
Patch Description:
Cisco Firepower Threat Defense(FTD)和Cisco Adaptive Security Appliances Software(ASA Software)都是美国思科(Cisco)公司的产品。Cisco Firepower Threat Defense是一套提供下一代防火墙服务的统一软件。Cisco Adaptive Security Appliances Software是一套防火墙和网络安全平台。该平台提供了对数据和网络资源的高度安全的访问等功能。
Cisco ASA和FTD中的IKEv1功能存在拒绝服务漏洞,该漏洞源于程序未能正确管理系统内存,攻击者可通过发送恶意的IKEv1流量利用该漏洞造成拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description:
厂商已发布了漏洞修复程序,请及时关注更新: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-dos-BqYFRJt9
Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-3303
Impacted products
| Name | ['Cisco Firepower Threat Defense Software 6.2.2', 'Cisco Adaptive Security Appliances Software <=9.5', 'Cisco Adaptive Security Appliances Software 9.6', 'Cisco Adaptive Security Appliances Software 9.7', 'Cisco Adaptive Security Appliances Software 9.8', 'Cisco Adaptive Security Appliances Software 9.9', 'Cisco Adaptive Security Appliances Software 9.10', 'Cisco Adaptive Security Appliances Software 9.12', 'Cisco Firepower Threat Defense Software <=6.1.0', 'Cisco Firepower Threat Defense Software 6.2.0', 'Cisco Firepower Threat Defense Software 6.2.3', 'Cisco Firepower Threat Defense Software 6.3.0', 'Cisco Firepower Threat Defense Software 6.4.0'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2020-3303"
}
},
"description": "Cisco Firepower Threat Defense\uff08FTD\uff09\u548cCisco Adaptive Security Appliances Software\uff08ASA Software\uff09\u90fd\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Cisco Firepower Threat Defense\u662f\u4e00\u5957\u63d0\u4f9b\u4e0b\u4e00\u4ee3\u9632\u706b\u5899\u670d\u52a1\u7684\u7edf\u4e00\u8f6f\u4ef6\u3002Cisco Adaptive Security Appliances Software\u662f\u4e00\u5957\u9632\u706b\u5899\u548c\u7f51\u7edc\u5b89\u5168\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u63d0\u4f9b\u4e86\u5bf9\u6570\u636e\u548c\u7f51\u7edc\u8d44\u6e90\u7684\u9ad8\u5ea6\u5b89\u5168\u7684\u8bbf\u95ee\u7b49\u529f\u80fd\u3002\n\nCisco ASA\u548cFTD\u4e2d\u7684IKEv1\u529f\u80fd\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u7ba1\u7406\u7cfb\u7edf\u5185\u5b58\uff0c\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u6076\u610f\u7684IKEv1\u6d41\u91cf\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-dos-BqYFRJt9",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2020-31110",
"openTime": "2020-06-02",
"patchDescription": "Cisco Firepower Threat Defense\uff08FTD\uff09\u548cCisco Adaptive Security Appliances Software\uff08ASA Software\uff09\u90fd\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Cisco Firepower Threat Defense\u662f\u4e00\u5957\u63d0\u4f9b\u4e0b\u4e00\u4ee3\u9632\u706b\u5899\u670d\u52a1\u7684\u7edf\u4e00\u8f6f\u4ef6\u3002Cisco Adaptive Security Appliances Software\u662f\u4e00\u5957\u9632\u706b\u5899\u548c\u7f51\u7edc\u5b89\u5168\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u63d0\u4f9b\u4e86\u5bf9\u6570\u636e\u548c\u7f51\u7edc\u8d44\u6e90\u7684\u9ad8\u5ea6\u5b89\u5168\u7684\u8bbf\u95ee\u7b49\u529f\u80fd\u3002\r\n\r\nCisco ASA\u548cFTD\u4e2d\u7684IKEv1\u529f\u80fd\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u7ba1\u7406\u7cfb\u7edf\u5185\u5b58\uff0c\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u6076\u610f\u7684IKEv1\u6d41\u91cf\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Cisco Firepower Threat Defense\u548cAdaptive Security Appliances Software\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2020-31110\uff09\u7684\u8865\u4e01",
"products": {
"product": [
"Cisco Firepower Threat Defense Software 6.2.2",
"Cisco Adaptive Security Appliances Software \u003c=9.5",
"Cisco Adaptive Security Appliances Software 9.6",
"Cisco Adaptive Security Appliances Software 9.7",
"Cisco Adaptive Security Appliances Software 9.8",
"Cisco Adaptive Security Appliances Software 9.9",
"Cisco Adaptive Security Appliances Software 9.10",
"Cisco Adaptive Security Appliances Software 9.12",
"Cisco Firepower Threat Defense Software \u003c=6.1.0",
"Cisco Firepower Threat Defense Software 6.2.0",
"Cisco Firepower Threat Defense Software 6.2.3",
"Cisco Firepower Threat Defense Software 6.3.0",
"Cisco Firepower Threat Defense Software 6.4.0"
]
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-3303",
"serverity": "\u9ad8",
"submitTime": "2020-05-07",
"title": "Cisco Firepower Threat Defense\u548cAdaptive Security Appliances Software\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2020-31110\uff09"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…