CVE-2022-20950
MEDIUM
Published 2022-11-10T17:32:32.127Z
Actions:
CVSS Score
V3.1
5.8
/10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
Base Score Metrics
Exploitability: N/A
Impact: N/A
EPSS Score
v2023.03.01
0.001
probability
of exploitation in the wild
There is a 0.1% chance that this vulnerability will be exploited in the wild within the next 30 days.
Updated: 2025-01-25
Exploit Probability
Percentile: 0.495
Higher than 49.5% of all CVEs
Attack Vector Metrics
Impact Metrics
Description
A vulnerability in the interaction of SIP and Snort 3 for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the Snort 3 detection engine to restart.
This vulnerability is due to a lack of error-checking when SIP bidirectional flows are being inspected by Snort 3. An attacker could exploit this vulnerability by sending a stream of crafted SIP traffic through an interface on the targeted device. A successful exploit could allow the attacker to trigger a restart of the Snort 3 process, resulting in a denial of service (DoS) condition.
Available Exploits
No exploits available for this CVE.
Related News
No news articles found for this CVE.
Affected Products
Published: 2022-11-10T17:32:32.127Z
Last Modified: 2024-11-19T21:05:42.392Z
Copied to clipboard!