Vulnerabilities > Cisco > Firepower Threat Defense > High

DATE CVE VULNERABILITY TITLE RISK
2022-05-03 CVE-2022-20746 NULL Pointer Dereference vulnerability in Cisco Firepower Threat Defense
A vulnerability in the TCP proxy functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition.
network
low complexity
cisco CWE-476
7.5
2022-05-03 CVE-2022-20751 Allocation of Resources Without Limits or Throttling vulnerability in Cisco Firepower Threat Defense
A vulnerability in the Snort detection engine integration for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause unlimited memory consumption, which could lead to a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-770
7.5
2022-05-03 CVE-2022-20757 Allocation of Resources Without Limits or Throttling vulnerability in Cisco Firepower Threat Defense
A vulnerability in the connection handling function in Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-770
7.5
2022-05-03 CVE-2022-20759 Improper Privilege Management vulnerability in Cisco Firepower Threat Defense
A vulnerability in the web services interface for remote access VPN features of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, but unprivileged, remote attacker to elevate privileges to level 15.
network
low complexity
cisco CWE-269
8.8
2022-05-03 CVE-2022-20760 Resource Exhaustion vulnerability in Cisco Firepower Threat Defense
A vulnerability in the DNS inspection handler of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service condition (DoS) on an affected device.
network
low complexity
cisco CWE-400
7.5
2022-05-03 CVE-2022-20767 Allocation of Resources Without Limits or Throttling vulnerability in Cisco Firepower Threat Defense
A vulnerability in the Snort rule evaluation function of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-770
7.5
2022-04-21 CVE-2022-20795 Insufficient Verification of Data Authenticity vulnerability in Cisco Adaptive Security Appliance
A vulnerability in the implementation of the Datagram TLS (DTLS) protocol in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause high CPU utilization, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-345
7.5
2022-01-11 CVE-2021-1573 Out-of-bounds Write vulnerability in Cisco Firepower Threat Defense
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition.
network
low complexity
cisco CWE-787
7.5
2022-01-11 CVE-2021-34704 Out-of-bounds Write vulnerability in Cisco products
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition.
network
low complexity
cisco CWE-787
7.5
2021-10-27 CVE-2021-34754 Unspecified vulnerability in Cisco products
Multiple vulnerabilities in the payload inspection for Ethernet Industrial Protocol (ENIP) traffic for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured rules for ENIP traffic.
network
low complexity
cisco
7.5