Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-40114 (GCVE-0-2021-40114)
Vulnerability from cvelistv5
Published
2021-10-27 18:56
Modified
2024-11-07 21:43
Severity ?
VLAI Severity ?
EPSS score ?
CWE
Summary
Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Cisco | Cisco Firepower Threat Defense Software |
Version: n/a |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T02:27:31.905Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20211027 Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
},
{
"name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
},
{
"name": "DSA-5354",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2023/dsa-5354"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2021-40114",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-07T21:39:43.541348Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-07T21:43:47.611Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Cisco Firepower Threat Defense Software",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2021-10-27T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-770",
"description": "CWE-770",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-02-19T00:00:00",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "20211027 Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability",
"tags": [
"vendor-advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
},
{
"name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
},
{
"name": "DSA-5354",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5354"
}
],
"source": {
"advisory": "cisco-sa-snort-dos-s2R7W9UU",
"defect": [
[
"CSCvt57503",
"CSCvx29001"
]
],
"discovery": "INTERNAL"
},
"title": "Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2021-40114",
"datePublished": "2021-10-27T18:56:37.380285Z",
"dateReserved": "2021-08-25T00:00:00",
"dateUpdated": "2024-11-07T21:43:47.611Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2021-40114\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2021-10-27T19:15:08.667\",\"lastModified\":\"2024-11-26T16:09:02.407\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples productos de Cisco est\u00e1n afectados por una vulnerabilidad en la forma en que el motor de detecci\u00f3n Snort procesa el tr\u00e1fico ICMP que podr\u00eda permitir a un atacante remoto no autenticado causar una condici\u00f3n de denegaci\u00f3n de servicio (DoS) en un dispositivo afectado. La vulnerabilidad es debido a una administraci\u00f3n inapropiada de los recursos de memoria mientras el motor de detecci\u00f3n Snort procesa paquetes ICMP. Un atacante podr\u00eda explotar esta vulnerabilidad mediante el env\u00edo de una serie de paquetes ICMP mediante un dispositivo afectado. Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir al atacante agotar los recursos del dispositivo afectado, causando la recarga del mismo\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H\",\"baseScore\":6.8,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":4.0},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-770\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-401\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.4.0.12\",\"matchCriteriaId\":\"FAE65CB5-08E5-41B6-9AC0-02451C90E833\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.5.0\",\"versionEndExcluding\":\"6.6.3\",\"matchCriteriaId\":\"D042ED9F-3702-4959-AAA0-D98684EB4556\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.7.0\",\"versionEndExcluding\":\"6.7.0.2\",\"matchCriteriaId\":\"FDDF492B-BC61-4814-B05F-3F6CD07080F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_firewall_management_center:2.9.14.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2986D5BD-1936-41BD-A992-7672C019F27E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_firewall_management_center:2.9.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"42493B4F-0CF2-45F0-B72D-36F0597CC274\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_firewall_management_center:2.9.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"06F2E7D8-BB95-480D-AE3E-F9B97C3A5379\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_firewall_management_center:2.9.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F41C382-C849-465C-AF77-0A787CA03BA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.12\",\"versionEndExcluding\":\"16.12.6\",\"matchCriteriaId\":\"174C4020-E642-48F7-BCC5-884834D3EBBB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.3\",\"versionEndExcluding\":\"17.3.4a\",\"matchCriteriaId\":\"F4521953-E027-498C-8484-A4E76A737347\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.4\",\"versionEndExcluding\":\"17.4.2\",\"matchCriteriaId\":\"3248706E-3F8C-4F74-900E-3302ACF2E716\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0.0\",\"versionEndExcluding\":\"2.9.18\",\"matchCriteriaId\":\"7DEEA69A-4557-409E-A0EC-981F2C7C828A\"}]}]}],\"references\":[{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html\",\"source\":\"psirt@cisco.com\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5354\",\"source\":\"psirt@cisco.com\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5354\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU\", \"name\": \"20211027 Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html\", \"name\": \"[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5354\", \"name\": \"DSA-5354\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-04T02:27:31.905Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2021-40114\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-07T21:39:43.541348Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-07T21:40:29.931Z\"}}], \"cna\": {\"title\": \"Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability\", \"source\": {\"defect\": [[\"CSCvt57503\", \"CSCvx29001\"]], \"advisory\": \"cisco-sa-snort-dos-s2R7W9UU\", \"discovery\": \"INTERNAL\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 6.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"Cisco\", \"product\": \"Cisco Firepower Threat Defense Software\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"exploits\": [{\"lang\": \"en\", \"value\": \"The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.\"}], \"datePublic\": \"2021-10-27T00:00:00\", \"references\": [{\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU\", \"name\": \"20211027 Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html\", \"name\": \"[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5354\", \"name\": \"DSA-5354\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-770\", \"description\": \"CWE-770\"}]}], \"providerMetadata\": {\"orgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"shortName\": \"cisco\", \"dateUpdated\": \"2023-02-19T00:00:00\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2021-40114\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-07T21:43:47.611Z\", \"dateReserved\": \"2021-08-25T00:00:00\", \"assignerOrgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"datePublished\": \"2021-10-27T18:56:37.380285Z\", \"assignerShortName\": \"cisco\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
fkie_cve-2021-40114
Vulnerability from fkie_nvd
Published
2021-10-27 19:15
Modified
2024-11-26 16:09
Severity ?
6.8 (Medium) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| psirt@cisco.com | https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html | ||
| psirt@cisco.com | https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU | Vendor Advisory | |
| psirt@cisco.com | https://www.debian.org/security/2023/dsa-5354 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2023/dsa-5354 |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| cisco | firepower_threat_defense | * | |
| cisco | firepower_threat_defense | * | |
| cisco | firepower_threat_defense | * | |
| cisco | secure_firewall_management_center | 2.9.14.0 | |
| cisco | secure_firewall_management_center | 2.9.15 | |
| cisco | secure_firewall_management_center | 2.9.16 | |
| cisco | secure_firewall_management_center | 2.9.17 | |
| cisco | unified_threat_defense | * | |
| cisco | unified_threat_defense | * | |
| cisco | unified_threat_defense | * | |
| snort | snort | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FAE65CB5-08E5-41B6-9AC0-02451C90E833",
"versionEndExcluding": "6.4.0.12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D042ED9F-3702-4959-AAA0-D98684EB4556",
"versionEndExcluding": "6.6.3",
"versionStartIncluding": "6.5.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FDDF492B-BC61-4814-B05F-3F6CD07080F7",
"versionEndExcluding": "6.7.0.2",
"versionStartIncluding": "6.7.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:2.9.14.0:*:*:*:*:*:*:*",
"matchCriteriaId": "2986D5BD-1936-41BD-A992-7672C019F27E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:2.9.15:*:*:*:*:*:*:*",
"matchCriteriaId": "42493B4F-0CF2-45F0-B72D-36F0597CC274",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:2.9.16:*:*:*:*:*:*:*",
"matchCriteriaId": "06F2E7D8-BB95-480D-AE3E-F9B97C3A5379",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:2.9.17:*:*:*:*:*:*:*",
"matchCriteriaId": "6F41C382-C849-465C-AF77-0A787CA03BA7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "174C4020-E642-48F7-BCC5-884834D3EBBB",
"versionEndExcluding": "16.12.6",
"versionStartIncluding": "16.12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F4521953-E027-498C-8484-A4E76A737347",
"versionEndExcluding": "17.3.4a",
"versionStartIncluding": "17.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3248706E-3F8C-4F74-900E-3302ACF2E716",
"versionEndExcluding": "17.4.2",
"versionStartIncluding": "17.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7DEEA69A-4557-409E-A0EC-981F2C7C828A",
"versionEndExcluding": "2.9.18",
"versionStartIncluding": "2.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload."
},
{
"lang": "es",
"value": "M\u00faltiples productos de Cisco est\u00e1n afectados por una vulnerabilidad en la forma en que el motor de detecci\u00f3n Snort procesa el tr\u00e1fico ICMP que podr\u00eda permitir a un atacante remoto no autenticado causar una condici\u00f3n de denegaci\u00f3n de servicio (DoS) en un dispositivo afectado. La vulnerabilidad es debido a una administraci\u00f3n inapropiada de los recursos de memoria mientras el motor de detecci\u00f3n Snort procesa paquetes ICMP. Un atacante podr\u00eda explotar esta vulnerabilidad mediante el env\u00edo de una serie de paquetes ICMP mediante un dispositivo afectado. Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir al atacante agotar los recursos del dispositivo afectado, causando la recarga del mismo"
}
],
"id": "CVE-2021-40114",
"lastModified": "2024-11-26T16:09:02.407",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 4.0,
"source": "psirt@cisco.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-10-27T19:15:08.667",
"references": [
{
"source": "psirt@cisco.com",
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
},
{
"source": "psirt@cisco.com",
"tags": [
"Vendor Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
},
{
"source": "psirt@cisco.com",
"url": "https://www.debian.org/security/2023/dsa-5354"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.debian.org/security/2023/dsa-5354"
}
],
"sourceIdentifier": "psirt@cisco.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-770"
}
],
"source": "psirt@cisco.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-401"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
gsd-2021-40114
Vulnerability from gsd
Modified
2023-12-13 01:23
Details
Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2021-40114",
"description": "Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.",
"id": "GSD-2021-40114",
"references": [
"https://www.debian.org/security/2023/dsa-5354"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2021-40114"
],
"details": "Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.",
"id": "GSD-2021-40114",
"modified": "2023-12-13T01:23:25.564899Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "psirt@cisco.com",
"DATE_PUBLIC": "2021-10-27T16:00:00",
"ID": "CVE-2021-40114",
"STATE": "PUBLIC",
"TITLE": "Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cisco Firepower Threat Defense Software ",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "Cisco"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload."
}
]
},
"exploit": [
{
"lang": "eng",
"value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. "
}
],
"impact": {
"cvss": {
"baseScore": "6.8",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H ",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-770"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20211027 Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability",
"refsource": "CISCO",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
},
{
"name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
},
{
"name": "DSA-5354",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2023/dsa-5354"
}
]
},
"source": {
"advisory": "cisco-sa-snort-dos-s2R7W9UU",
"defect": [
[
"CSCvt57503",
"CSCvx29001"
]
],
"discovery": "INTERNAL"
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.14.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:firepower_management_center:2.9.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.7.0.2",
"versionStartIncluding": "6.7.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.4.0.12",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.6.3",
"versionStartIncluding": "6.5.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "17.4.2",
"versionStartIncluding": "17.4",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "17.3.4a",
"versionStartIncluding": "17.3",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "16.12.6",
"versionStartIncluding": "16.12",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.9.18",
"versionStartIncluding": "2.0.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "psirt@cisco.com",
"ID": "CVE-2021-40114"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-401"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20211027 Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability",
"refsource": "CISCO",
"tags": [
"Vendor Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
},
{
"name": "[debian-lts-announce] 20230210 [SECURITY] [DLA 3317-1] snort security update",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
},
{
"name": "DSA-5354",
"refsource": "DEBIAN",
"tags": [],
"url": "https://www.debian.org/security/2023/dsa-5354"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
},
"lastModifiedDate": "2023-02-19T04:15Z",
"publishedDate": "2021-10-27T19:15Z"
}
}
}
ghsa-5v43-2p8q-45m6
Vulnerability from github
Published
2022-05-24 19:18
Modified
2023-02-11 03:32
Severity ?
VLAI Severity ?
Details
Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.
{
"affected": [],
"aliases": [
"CVE-2021-40114"
],
"database_specific": {
"cwe_ids": [
"CWE-401",
"CWE-770"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-10-27T19:15:00Z",
"severity": "HIGH"
},
"details": "Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.",
"id": "GHSA-5v43-2p8q-45m6",
"modified": "2023-02-11T03:32:49Z",
"published": "2022-05-24T19:18:53Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-40114"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
},
{
"type": "WEB",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2023/dsa-5354"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
cisco-sa-snort-dos-s2r7w9uu
Vulnerability from csaf_cisco
Published
2021-10-27 16:00
Modified
2021-10-29 14:07
Summary
Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability
Notes
Summary
Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is part of the October 2021 release of the Cisco ASA, FTD, and FMC Security Advisory Bundled publication. For a complete list of the advisories and links to them, see Cisco Event Response: October 2021 Cisco ASA, FMC, and FTD Software Security Advisory Bundled Publication ["https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74773"].
Vulnerable Products
At the time of publication, this vulnerability affected all open source Snort project releases earlier than Release 2.9.18. For more information on open source Snort, see the Snort website ["https://www.snort.org/"].
Impact to Cisco Products
At the time of publication, this vulnerability affected the following Cisco products if they were running a vulnerable release of Cisco Software:
Firepower Threat Defense (FTD) Software - All platforms
At the time of publication, this vulnerability affected the following Cisco products if they were running a release earlier than the first fixed release of Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS) Engine for Cisco IOS XE Software or Cisco UTD Engine for Cisco IOS XE SD-WAN Software.
Note: UTD is not installed on these devices by default:
1000 Series Integrated Services Routers (ISRs)
4000 Series Integrated Services Routers (ISRs)
Catalyst 8000V Edge Software
Catalyst 8200 Series Edge Platforms
Catalyst 8300 Series Edge Platforms
Cloud Services Routers 1000V Series
Integrated Services Virtual Routers (ISRv)
For information about which Cisco software releases were vulnerable at the time of publication, see the Fixed Software ["#fs"] section of this advisory. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information.
Products Confirmed Not Vulnerable
Only products listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by this vulnerability.
Cisco has confirmed that this vulnerability does not affect the following Cisco products:
Adaptive Security Appliance (ASA) Software
Catalyst 8500 Series Edge Platforms
Catalyst 8500L Series Edge Platforms
Firepower Management Center (FMC) Software
Meraki Security Appliances
Workarounds
There are no workarounds that address this vulnerability.
Fixed Software
When considering software upgrades ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page ["https://www.cisco.com/go/psirt"], to determine exposure and a complete upgrade solution.
In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.
Fixed Releases
At the time of publication, the release information in the following table(s) was accurate. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information.
The left column lists Cisco software releases, and the right column indicates whether a release was affected by the vulnerability described in this advisory and which release included the fix for this vulnerability.
Cisco FTD Software
FTD Software Release First Fixed Release for This Vulnerability 6.2.2 and earlier1 Migrate to a fixed release. 6.2.3 Migrate to a fixed release. 6.3.01 Migrate to a fixed release. 6.4.0 6.4.0.12 6.5.01 Migrate to a fixed release. 6.6.0 6.6.3 6.7.0 6.7.0.2 7.0.0 Not vulnerable.
1. Cisco FMC and FTD Software releases 6.2.2 and earlier, as well as releases 6.3.0 and 6.5.0, have reached end of software maintenance ["https://www.cisco.com/c/en/us/products/eos-eol-listing.html"]. Customers are advised to migrate to a supported release that includes the fix for this vulnerability.
For instructions on upgrading your FTD device, see Cisco Firepower Management Center Upgrade Guide ["https://www.cisco.com/c/en/us/td/docs/security/firepower/upgrade/fpmc-upgrade-guide/getting_started.html"].
Cisco UTD Software
UTD Software Release First Fixed Release for This Vulnerability 16.12 16.12.6 17.3 17.3.4a 17.4 17.4.2 17.5 Not vulnerable. 17.6 Not vulnerable. 17.7 Not vulnerable.
Snort Software Release
Snort Major Release First Fixed Release for This Vulnerability 2.x 2.9.18 3.x Not vulnerable.
The Cisco Product Security Incident Response Team (PSIRT) validates only the affected and fixed release information that is documented in this advisory.
Vulnerability Policy
To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.
Exploitation and Public Announcements
The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.
Source
This vulnerability was found by Santosh Krishnamurthy of Cisco during internal security testing.
Legal Disclaimer
THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.
A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.
{
"document": {
"acknowledgments": [
{
"summary": "This vulnerability was found by Santosh Krishnamurthy of Cisco during internal security testing."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"notes": [
{
"category": "summary",
"text": "Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r\nThe vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.\r\n\r\nCisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\r\n\r\n\r\n\r\nThis advisory is part of the October 2021 release of the Cisco ASA, FTD, and FMC Security Advisory Bundled publication. For a complete list of the advisories and links to them, see Cisco Event Response: October 2021 Cisco ASA, FMC, and FTD Software Security Advisory Bundled Publication [\"https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74773\"].",
"title": "Summary"
},
{
"category": "general",
"text": "At the time of publication, this vulnerability affected all open source Snort project releases earlier than Release 2.9.18. For more information on open source Snort, see the Snort website [\"https://www.snort.org/\"].\r\n Impact to Cisco Products\r\nAt the time of publication, this vulnerability affected the following Cisco products if they were running a vulnerable release of Cisco Software:\r\n\r\nFirepower Threat Defense (FTD) Software - All platforms\r\n\r\nAt the time of publication, this vulnerability affected the following Cisco products if they were running a release earlier than the first fixed release of Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS) Engine for Cisco IOS XE Software or Cisco UTD Engine for Cisco IOS XE SD-WAN Software.\r\n\r\nNote: UTD is not installed on these devices by default:\r\n\r\n1000 Series Integrated Services Routers (ISRs)\r\n4000 Series Integrated Services Routers (ISRs)\r\nCatalyst 8000V Edge Software\r\nCatalyst 8200 Series Edge Platforms\r\nCatalyst 8300 Series Edge Platforms\r\nCloud Services Routers 1000V Series\r\nIntegrated Services Virtual Routers (ISRv)\r\n\r\nFor information about which Cisco software releases were vulnerable at the time of publication, see the Fixed Software [\"#fs\"] section of this advisory. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information.",
"title": "Vulnerable Products"
},
{
"category": "general",
"text": "Only products listed in the Vulnerable Products [\"#vp\"] section of this advisory are known to be affected by this vulnerability.\r\n\r\nCisco has confirmed that this vulnerability does not affect the following Cisco products:\r\n\r\nAdaptive Security Appliance (ASA) Software\r\nCatalyst 8500 Series Edge Platforms\r\nCatalyst 8500L Series Edge Platforms\r\nFirepower Management Center (FMC) Software\r\nMeraki Security Appliances",
"title": "Products Confirmed Not Vulnerable"
},
{
"category": "general",
"text": "There are no workarounds that address this vulnerability.",
"title": "Workarounds"
},
{
"category": "general",
"text": "When considering software upgrades [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page [\"https://www.cisco.com/go/psirt\"], to determine exposure and a complete upgrade solution.\r\n\r\nIn all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.\r\n Fixed Releases\r\nAt the time of publication, the release information in the following table(s) was accurate. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information.\r\n\r\nThe left column lists Cisco software releases, and the right column indicates whether a release was affected by the vulnerability described in this advisory and which release included the fix for this vulnerability.\r\n\r\nCisco FTD Software\r\n FTD Software Release First Fixed Release for This Vulnerability 6.2.2 and earlier1 Migrate to a fixed release. 6.2.3 Migrate to a fixed release. 6.3.01 Migrate to a fixed release. 6.4.0 6.4.0.12 6.5.01 Migrate to a fixed release. 6.6.0 6.6.3 6.7.0 6.7.0.2 7.0.0 Not vulnerable.\r\n1. Cisco FMC and FTD Software releases 6.2.2 and earlier, as well as releases 6.3.0 and 6.5.0, have reached end of software maintenance [\"https://www.cisco.com/c/en/us/products/eos-eol-listing.html\"]. Customers are advised to migrate to a supported release that includes the fix for this vulnerability.\r\n\r\nFor instructions on upgrading your FTD device, see Cisco Firepower Management Center Upgrade Guide [\"https://www.cisco.com/c/en/us/td/docs/security/firepower/upgrade/fpmc-upgrade-guide/getting_started.html\"].\r\n\r\nCisco UTD Software\r\n UTD Software Release First Fixed Release for This Vulnerability 16.12 16.12.6 17.3 17.3.4a 17.4 17.4.2 17.5 Not vulnerable. 17.6 Not vulnerable. 17.7 Not vulnerable.\r\nSnort Software Release\r\n Snort Major Release First Fixed Release for This Vulnerability 2.x 2.9.18 3.x Not vulnerable.\r\nThe Cisco Product Security Incident Response Team (PSIRT) validates only the affected and fixed release information that is documented in this advisory.",
"title": "Fixed Software"
},
{
"category": "general",
"text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
"title": "Vulnerability Policy"
},
{
"category": "general",
"text": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.",
"title": "Exploitation and Public Announcements"
},
{
"category": "general",
"text": "This vulnerability was found by Santosh Krishnamurthy of Cisco during internal security testing.",
"title": "Source"
},
{
"category": "legal_disclaimer",
"text": "THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.\r\n\r\nA standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.",
"title": "Legal Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@cisco.com",
"issuing_authority": "Cisco PSIRT",
"name": "Cisco",
"namespace": "https://wwww.cisco.com"
},
"references": [
{
"category": "self",
"summary": "Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
},
{
"category": "external",
"summary": "Cisco Event Response: October 2021 Cisco ASA, FMC, and FTD Software Security Advisory Bundled Publication",
"url": "https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74773"
},
{
"category": "external",
"summary": "Cisco Security Vulnerability Policy",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
},
{
"category": "external",
"summary": "Snort website",
"url": "https://www.snort.org/"
},
{
"category": "external",
"summary": "considering software upgrades",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;Security Advisories page",
"url": "https://www.cisco.com/go/psirt"
},
{
"category": "external",
"summary": "end of software maintenance",
"url": "https://www.cisco.com/c/en/us/products/eos-eol-listing.html"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;Firepower Management Center Upgrade Guide",
"url": "https://www.cisco.com/c/en/us/td/docs/security/firepower/upgrade/fpmc-upgrade-guide/getting_started.html"
}
],
"title": "Multiple Cisco Products Snort Memory Leak Denial of Service Vulnerability",
"tracking": {
"current_release_date": "2021-10-29T14:07:40+00:00",
"generator": {
"date": "2024-05-10T23:11:04+00:00",
"engine": {
"name": "TVCE"
}
},
"id": "cisco-sa-snort-dos-s2R7W9UU",
"initial_release_date": "2021-10-27T16:00:00+00:00",
"revision_history": [
{
"date": "2021-10-27T15:39:38+00:00",
"number": "1.0.0",
"summary": "Initial public release."
},
{
"date": "2021-10-29T14:07:40+00:00",
"number": "1.1.0",
"summary": "Updated the Source section."
}
],
"status": "final",
"version": "1.1.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "service_pack",
"name": "6.2.3",
"product": {
"name": "6.2.3",
"product_id": "CSAFPID-233334"
}
},
{
"category": "service_pack",
"name": "6.2.3.1",
"product": {
"name": "6.2.3.1",
"product_id": "CSAFPID-245396"
}
},
{
"category": "service_pack",
"name": "6.2.3.2",
"product": {
"name": "6.2.3.2",
"product_id": "CSAFPID-245397"
}
},
{
"category": "service_pack",
"name": "6.2.3.3",
"product": {
"name": "6.2.3.3",
"product_id": "CSAFPID-245398"
}
},
{
"category": "service_pack",
"name": "6.2.3.4",
"product": {
"name": "6.2.3.4",
"product_id": "CSAFPID-247893"
}
},
{
"category": "service_pack",
"name": "6.2.3.5",
"product": {
"name": "6.2.3.5",
"product_id": "CSAFPID-247894"
}
},
{
"category": "service_pack",
"name": "6.2.3.6",
"product": {
"name": "6.2.3.6",
"product_id": "CSAFPID-248816"
}
},
{
"category": "service_pack",
"name": "6.2.3.7",
"product": {
"name": "6.2.3.7",
"product_id": "CSAFPID-251756"
}
},
{
"category": "service_pack",
"name": "6.2.3.8",
"product": {
"name": "6.2.3.8",
"product_id": "CSAFPID-251757"
}
},
{
"category": "service_pack",
"name": "6.2.3.10",
"product": {
"name": "6.2.3.10",
"product_id": "CSAFPID-258063"
}
},
{
"category": "service_pack",
"name": "6.2.3.11",
"product": {
"name": "6.2.3.11",
"product_id": "CSAFPID-258064"
}
},
{
"category": "service_pack",
"name": "6.2.3.9",
"product": {
"name": "6.2.3.9",
"product_id": "CSAFPID-258915"
}
},
{
"category": "service_pack",
"name": "6.2.3.12",
"product": {
"name": "6.2.3.12",
"product_id": "CSAFPID-265011"
}
},
{
"category": "service_pack",
"name": "6.2.3.13",
"product": {
"name": "6.2.3.13",
"product_id": "CSAFPID-267675"
}
},
{
"category": "service_pack",
"name": "6.2.3.14",
"product": {
"name": "6.2.3.14",
"product_id": "CSAFPID-267676"
}
},
{
"category": "service_pack",
"name": "6.2.3.15",
"product": {
"name": "6.2.3.15",
"product_id": "CSAFPID-275475"
}
},
{
"category": "service_pack",
"name": "6.2.3.16",
"product": {
"name": "6.2.3.16",
"product_id": "CSAFPID-278503"
}
},
{
"category": "service_pack",
"name": "6.2.3.17",
"product": {
"name": "6.2.3.17",
"product_id": "CSAFPID-284172"
}
}
],
"category": "product_version",
"name": "6.2"
},
{
"branches": [
{
"category": "service_pack",
"name": "6.6.0",
"product": {
"name": "6.6.0",
"product_id": "CSAFPID-225862"
}
},
{
"category": "service_pack",
"name": "6.6.0.1",
"product": {
"name": "6.6.0.1",
"product_id": "CSAFPID-278885"
}
},
{
"category": "service_pack",
"name": "6.6.1",
"product": {
"name": "6.6.1",
"product_id": "CSAFPID-280013"
}
}
],
"category": "product_version",
"name": "6.6"
},
{
"branches": [
{
"category": "service_pack",
"name": "6.4.0",
"product": {
"name": "6.4.0",
"product_id": "CSAFPID-265014"
}
},
{
"category": "service_pack",
"name": "6.4.0.1",
"product": {
"name": "6.4.0.1",
"product_id": "CSAFPID-265015"
}
},
{
"category": "service_pack",
"name": "6.4.0.3",
"product": {
"name": "6.4.0.3",
"product_id": "CSAFPID-265950"
}
},
{
"category": "service_pack",
"name": "6.4.0.2",
"product": {
"name": "6.4.0.2",
"product_id": "CSAFPID-268602"
}
},
{
"category": "service_pack",
"name": "6.4.0.4",
"product": {
"name": "6.4.0.4",
"product_id": "CSAFPID-276372"
}
},
{
"category": "service_pack",
"name": "6.4.0.5",
"product": {
"name": "6.4.0.5",
"product_id": "CSAFPID-276373"
}
},
{
"category": "service_pack",
"name": "6.4.0.6",
"product": {
"name": "6.4.0.6",
"product_id": "CSAFPID-276933"
}
},
{
"category": "service_pack",
"name": "6.4.0.7",
"product": {
"name": "6.4.0.7",
"product_id": "CSAFPID-276934"
}
},
{
"category": "service_pack",
"name": "6.4.0.8",
"product": {
"name": "6.4.0.8",
"product_id": "CSAFPID-276935"
}
},
{
"category": "service_pack",
"name": "6.4.0.9",
"product": {
"name": "6.4.0.9",
"product_id": "CSAFPID-278397"
}
},
{
"category": "service_pack",
"name": "6.4.0.10",
"product": {
"name": "6.4.0.10",
"product_id": "CSAFPID-280662"
}
},
{
"category": "service_pack",
"name": "6.4.0.11",
"product": {
"name": "6.4.0.11",
"product_id": "CSAFPID-280999"
}
}
],
"category": "product_version",
"name": "6.4"
}
],
"category": "product_family",
"name": "Cisco Firepower Threat Defense Software"
},
{
"category": "product_family",
"name": "Cisco UTD SNORT IPS Engine Software",
"product": {
"name": "Cisco UTD SNORT IPS Engine Software ",
"product_id": "CSAFPID-279755"
}
},
{
"category": "product_name",
"name": "Cisco Firepower 2100 Series",
"product": {
"name": "Cisco Firepower 2100 Series",
"product_id": "CSAFPID-277392"
}
},
{
"category": "product_name",
"name": "Cisco Firepower 1000 Series",
"product": {
"name": "Cisco Firepower 1000 Series",
"product_id": "CSAFPID-277393"
}
},
{
"category": "product_name",
"name": "Cisco ASA 5500-X Series Firewalls",
"product": {
"name": "Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-277437"
}
},
{
"category": "product_name",
"name": "Cisco 3000 Series Industrial Security Appliances (ISA)",
"product": {
"name": "Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-277438"
}
},
{
"category": "product_name",
"name": "Cisco Firepower 9000 Series",
"product": {
"name": "Cisco Firepower 9000 Series",
"product_id": "CSAFPID-277440"
}
},
{
"category": "product_name",
"name": "Cisco Firepower 4100 Series",
"product": {
"name": "Cisco Firepower 4100 Series",
"product_id": "CSAFPID-277441"
}
},
{
"category": "product_name",
"name": "Cisco Secure Firewall Threat Defense Virtual",
"product": {
"name": "Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-277464"
}
}
],
"category": "vendor",
"name": "Cisco"
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-233334:277392"
},
"product_reference": "CSAFPID-233334",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-233334:277437"
},
"product_reference": "CSAFPID-233334",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-233334:277438"
},
"product_reference": "CSAFPID-233334",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-233334:277440"
},
"product_reference": "CSAFPID-233334",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-233334:277441"
},
"product_reference": "CSAFPID-233334",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-233334:277464"
},
"product_reference": "CSAFPID-233334",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.1 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-245396:277392"
},
"product_reference": "CSAFPID-245396",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.1 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-245396:277437"
},
"product_reference": "CSAFPID-245396",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.1 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-245396:277438"
},
"product_reference": "CSAFPID-245396",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.1 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-245396:277440"
},
"product_reference": "CSAFPID-245396",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.1 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-245396:277441"
},
"product_reference": "CSAFPID-245396",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.1 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-245396:277464"
},
"product_reference": "CSAFPID-245396",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.2 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-245397:277392"
},
"product_reference": "CSAFPID-245397",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.2 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-245397:277437"
},
"product_reference": "CSAFPID-245397",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.2 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-245397:277438"
},
"product_reference": "CSAFPID-245397",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.2 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-245397:277440"
},
"product_reference": "CSAFPID-245397",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.2 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-245397:277441"
},
"product_reference": "CSAFPID-245397",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.2 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-245397:277464"
},
"product_reference": "CSAFPID-245397",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.3 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-245398:277392"
},
"product_reference": "CSAFPID-245398",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.3 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-245398:277437"
},
"product_reference": "CSAFPID-245398",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.3 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-245398:277438"
},
"product_reference": "CSAFPID-245398",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.3 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-245398:277440"
},
"product_reference": "CSAFPID-245398",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.3 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-245398:277441"
},
"product_reference": "CSAFPID-245398",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.3 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-245398:277464"
},
"product_reference": "CSAFPID-245398",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.4 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-247893:277392"
},
"product_reference": "CSAFPID-247893",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.4 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-247893:277437"
},
"product_reference": "CSAFPID-247893",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.4 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-247893:277438"
},
"product_reference": "CSAFPID-247893",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.4 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-247893:277440"
},
"product_reference": "CSAFPID-247893",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.4 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-247893:277441"
},
"product_reference": "CSAFPID-247893",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.4 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-247893:277464"
},
"product_reference": "CSAFPID-247893",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.5 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-247894:277392"
},
"product_reference": "CSAFPID-247894",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.5 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-247894:277437"
},
"product_reference": "CSAFPID-247894",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.5 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-247894:277438"
},
"product_reference": "CSAFPID-247894",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.5 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-247894:277440"
},
"product_reference": "CSAFPID-247894",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.5 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-247894:277441"
},
"product_reference": "CSAFPID-247894",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.5 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-247894:277464"
},
"product_reference": "CSAFPID-247894",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.6 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-248816:277392"
},
"product_reference": "CSAFPID-248816",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.6 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-248816:277437"
},
"product_reference": "CSAFPID-248816",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.6 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-248816:277438"
},
"product_reference": "CSAFPID-248816",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.6 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-248816:277440"
},
"product_reference": "CSAFPID-248816",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.6 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-248816:277441"
},
"product_reference": "CSAFPID-248816",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.6 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-248816:277464"
},
"product_reference": "CSAFPID-248816",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.7 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-251756:277392"
},
"product_reference": "CSAFPID-251756",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.7 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-251756:277437"
},
"product_reference": "CSAFPID-251756",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.7 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-251756:277438"
},
"product_reference": "CSAFPID-251756",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.7 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-251756:277440"
},
"product_reference": "CSAFPID-251756",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.7 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-251756:277441"
},
"product_reference": "CSAFPID-251756",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.7 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-251756:277464"
},
"product_reference": "CSAFPID-251756",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.8 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-251757:277392"
},
"product_reference": "CSAFPID-251757",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.8 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-251757:277437"
},
"product_reference": "CSAFPID-251757",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.8 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-251757:277438"
},
"product_reference": "CSAFPID-251757",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.8 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-251757:277440"
},
"product_reference": "CSAFPID-251757",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.8 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-251757:277441"
},
"product_reference": "CSAFPID-251757",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.8 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-251757:277464"
},
"product_reference": "CSAFPID-251757",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.10 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-258063:277392"
},
"product_reference": "CSAFPID-258063",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.10 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-258063:277437"
},
"product_reference": "CSAFPID-258063",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.10 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-258063:277438"
},
"product_reference": "CSAFPID-258063",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.10 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-258063:277440"
},
"product_reference": "CSAFPID-258063",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.10 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-258063:277441"
},
"product_reference": "CSAFPID-258063",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.10 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-258063:277464"
},
"product_reference": "CSAFPID-258063",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.11 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-258064:277392"
},
"product_reference": "CSAFPID-258064",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.11 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-258064:277437"
},
"product_reference": "CSAFPID-258064",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.11 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-258064:277438"
},
"product_reference": "CSAFPID-258064",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.11 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-258064:277440"
},
"product_reference": "CSAFPID-258064",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.11 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-258064:277441"
},
"product_reference": "CSAFPID-258064",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.11 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-258064:277464"
},
"product_reference": "CSAFPID-258064",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.9 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-258915:277392"
},
"product_reference": "CSAFPID-258915",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.9 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-258915:277437"
},
"product_reference": "CSAFPID-258915",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.9 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-258915:277438"
},
"product_reference": "CSAFPID-258915",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.9 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-258915:277440"
},
"product_reference": "CSAFPID-258915",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.9 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-258915:277441"
},
"product_reference": "CSAFPID-258915",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.9 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-258915:277464"
},
"product_reference": "CSAFPID-258915",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.12 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-265011:277392"
},
"product_reference": "CSAFPID-265011",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.12 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-265011:277437"
},
"product_reference": "CSAFPID-265011",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.12 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-265011:277438"
},
"product_reference": "CSAFPID-265011",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.12 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-265011:277440"
},
"product_reference": "CSAFPID-265011",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.12 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-265011:277441"
},
"product_reference": "CSAFPID-265011",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.12 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-265011:277464"
},
"product_reference": "CSAFPID-265011",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.13 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-267675:277392"
},
"product_reference": "CSAFPID-267675",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.13 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-267675:277437"
},
"product_reference": "CSAFPID-267675",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.13 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-267675:277438"
},
"product_reference": "CSAFPID-267675",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.13 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-267675:277440"
},
"product_reference": "CSAFPID-267675",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.13 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-267675:277441"
},
"product_reference": "CSAFPID-267675",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.13 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-267675:277464"
},
"product_reference": "CSAFPID-267675",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.14 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-267676:277392"
},
"product_reference": "CSAFPID-267676",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.14 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-267676:277437"
},
"product_reference": "CSAFPID-267676",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.14 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-267676:277438"
},
"product_reference": "CSAFPID-267676",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.14 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-267676:277440"
},
"product_reference": "CSAFPID-267676",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.14 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-267676:277441"
},
"product_reference": "CSAFPID-267676",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.14 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-267676:277464"
},
"product_reference": "CSAFPID-267676",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.15 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-275475:277392"
},
"product_reference": "CSAFPID-275475",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.15 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-275475:277437"
},
"product_reference": "CSAFPID-275475",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.15 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-275475:277438"
},
"product_reference": "CSAFPID-275475",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.15 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-275475:277440"
},
"product_reference": "CSAFPID-275475",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.15 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-275475:277441"
},
"product_reference": "CSAFPID-275475",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.15 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-275475:277464"
},
"product_reference": "CSAFPID-275475",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.16 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-278503:277392"
},
"product_reference": "CSAFPID-278503",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.16 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-278503:277437"
},
"product_reference": "CSAFPID-278503",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.16 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-278503:277438"
},
"product_reference": "CSAFPID-278503",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.16 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-278503:277440"
},
"product_reference": "CSAFPID-278503",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.16 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-278503:277441"
},
"product_reference": "CSAFPID-278503",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.16 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-278503:277464"
},
"product_reference": "CSAFPID-278503",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.17 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-284172:277392"
},
"product_reference": "CSAFPID-284172",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.17 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-284172:277437"
},
"product_reference": "CSAFPID-284172",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.17 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-284172:277438"
},
"product_reference": "CSAFPID-284172",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.17 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-284172:277440"
},
"product_reference": "CSAFPID-284172",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.17 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-284172:277441"
},
"product_reference": "CSAFPID-284172",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.2.3.17 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-284172:277464"
},
"product_reference": "CSAFPID-284172",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-225862:277392"
},
"product_reference": "CSAFPID-225862",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-225862:277393"
},
"product_reference": "CSAFPID-225862",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-225862:277437"
},
"product_reference": "CSAFPID-225862",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-225862:277438"
},
"product_reference": "CSAFPID-225862",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-225862:277440"
},
"product_reference": "CSAFPID-225862",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-225862:277441"
},
"product_reference": "CSAFPID-225862",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-225862:277464"
},
"product_reference": "CSAFPID-225862",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0.1 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-278885:277392"
},
"product_reference": "CSAFPID-278885",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0.1 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-278885:277393"
},
"product_reference": "CSAFPID-278885",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0.1 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-278885:277437"
},
"product_reference": "CSAFPID-278885",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0.1 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-278885:277438"
},
"product_reference": "CSAFPID-278885",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0.1 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-278885:277440"
},
"product_reference": "CSAFPID-278885",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0.1 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-278885:277441"
},
"product_reference": "CSAFPID-278885",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.0.1 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-278885:277464"
},
"product_reference": "CSAFPID-278885",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.1 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-280013:277392"
},
"product_reference": "CSAFPID-280013",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.1 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-280013:277393"
},
"product_reference": "CSAFPID-280013",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.1 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-280013:277437"
},
"product_reference": "CSAFPID-280013",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.1 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-280013:277438"
},
"product_reference": "CSAFPID-280013",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.1 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-280013:277440"
},
"product_reference": "CSAFPID-280013",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.1 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-280013:277441"
},
"product_reference": "CSAFPID-280013",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.6.1 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-280013:277464"
},
"product_reference": "CSAFPID-280013",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-265014:277392"
},
"product_reference": "CSAFPID-265014",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-265014:277393"
},
"product_reference": "CSAFPID-265014",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-265014:277437"
},
"product_reference": "CSAFPID-265014",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-265014:277438"
},
"product_reference": "CSAFPID-265014",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-265014:277440"
},
"product_reference": "CSAFPID-265014",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-265014:277441"
},
"product_reference": "CSAFPID-265014",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-265014:277464"
},
"product_reference": "CSAFPID-265014",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.1 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-265015:277392"
},
"product_reference": "CSAFPID-265015",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.1 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-265015:277437"
},
"product_reference": "CSAFPID-265015",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.1 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-265015:277438"
},
"product_reference": "CSAFPID-265015",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.1 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-265015:277440"
},
"product_reference": "CSAFPID-265015",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.1 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-265015:277441"
},
"product_reference": "CSAFPID-265015",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.1 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-265015:277464"
},
"product_reference": "CSAFPID-265015",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.3 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-265950:277392"
},
"product_reference": "CSAFPID-265950",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.3 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-265950:277393"
},
"product_reference": "CSAFPID-265950",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.3 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-265950:277437"
},
"product_reference": "CSAFPID-265950",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.3 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-265950:277438"
},
"product_reference": "CSAFPID-265950",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.3 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-265950:277440"
},
"product_reference": "CSAFPID-265950",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.3 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-265950:277441"
},
"product_reference": "CSAFPID-265950",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.3 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-265950:277464"
},
"product_reference": "CSAFPID-265950",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.2 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-268602:277392"
},
"product_reference": "CSAFPID-268602",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.2 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-268602:277393"
},
"product_reference": "CSAFPID-268602",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.2 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-268602:277437"
},
"product_reference": "CSAFPID-268602",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.2 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-268602:277438"
},
"product_reference": "CSAFPID-268602",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.2 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-268602:277440"
},
"product_reference": "CSAFPID-268602",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.2 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-268602:277441"
},
"product_reference": "CSAFPID-268602",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.2 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-268602:277464"
},
"product_reference": "CSAFPID-268602",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.4 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-276372:277392"
},
"product_reference": "CSAFPID-276372",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.4 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-276372:277393"
},
"product_reference": "CSAFPID-276372",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.4 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-276372:277437"
},
"product_reference": "CSAFPID-276372",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.4 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-276372:277438"
},
"product_reference": "CSAFPID-276372",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.4 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-276372:277440"
},
"product_reference": "CSAFPID-276372",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.4 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-276372:277441"
},
"product_reference": "CSAFPID-276372",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.4 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-276372:277464"
},
"product_reference": "CSAFPID-276372",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.5 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-276373:277392"
},
"product_reference": "CSAFPID-276373",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.5 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-276373:277393"
},
"product_reference": "CSAFPID-276373",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.5 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-276373:277437"
},
"product_reference": "CSAFPID-276373",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.5 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-276373:277438"
},
"product_reference": "CSAFPID-276373",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.5 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-276373:277440"
},
"product_reference": "CSAFPID-276373",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.5 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-276373:277441"
},
"product_reference": "CSAFPID-276373",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.5 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-276373:277464"
},
"product_reference": "CSAFPID-276373",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.6 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-276933:277392"
},
"product_reference": "CSAFPID-276933",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.6 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-276933:277393"
},
"product_reference": "CSAFPID-276933",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.6 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-276933:277437"
},
"product_reference": "CSAFPID-276933",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.6 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-276933:277438"
},
"product_reference": "CSAFPID-276933",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.6 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-276933:277440"
},
"product_reference": "CSAFPID-276933",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.6 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-276933:277441"
},
"product_reference": "CSAFPID-276933",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.6 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-276933:277464"
},
"product_reference": "CSAFPID-276933",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.7 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-276934:277392"
},
"product_reference": "CSAFPID-276934",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.7 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-276934:277393"
},
"product_reference": "CSAFPID-276934",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.7 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-276934:277437"
},
"product_reference": "CSAFPID-276934",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.7 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-276934:277438"
},
"product_reference": "CSAFPID-276934",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.7 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-276934:277440"
},
"product_reference": "CSAFPID-276934",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.7 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-276934:277441"
},
"product_reference": "CSAFPID-276934",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.7 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-276934:277464"
},
"product_reference": "CSAFPID-276934",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.8 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-276935:277392"
},
"product_reference": "CSAFPID-276935",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.8 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-276935:277393"
},
"product_reference": "CSAFPID-276935",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.8 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-276935:277437"
},
"product_reference": "CSAFPID-276935",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.8 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-276935:277438"
},
"product_reference": "CSAFPID-276935",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.8 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-276935:277440"
},
"product_reference": "CSAFPID-276935",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.8 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-276935:277441"
},
"product_reference": "CSAFPID-276935",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.8 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-276935:277464"
},
"product_reference": "CSAFPID-276935",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.9 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-278397:277392"
},
"product_reference": "CSAFPID-278397",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.9 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-278397:277393"
},
"product_reference": "CSAFPID-278397",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.9 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-278397:277437"
},
"product_reference": "CSAFPID-278397",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.9 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-278397:277438"
},
"product_reference": "CSAFPID-278397",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.9 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-278397:277440"
},
"product_reference": "CSAFPID-278397",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.9 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-278397:277441"
},
"product_reference": "CSAFPID-278397",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.9 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-278397:277464"
},
"product_reference": "CSAFPID-278397",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.10 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-280662:277392"
},
"product_reference": "CSAFPID-280662",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.10 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-280662:277393"
},
"product_reference": "CSAFPID-280662",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.10 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-280662:277437"
},
"product_reference": "CSAFPID-280662",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.10 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-280662:277438"
},
"product_reference": "CSAFPID-280662",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.10 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-280662:277440"
},
"product_reference": "CSAFPID-280662",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.10 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-280662:277441"
},
"product_reference": "CSAFPID-280662",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.10 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-280662:277464"
},
"product_reference": "CSAFPID-280662",
"relates_to_product_reference": "CSAFPID-277464"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.11 when installed on Cisco Firepower 2100 Series",
"product_id": "CSAFPID-280999:277392"
},
"product_reference": "CSAFPID-280999",
"relates_to_product_reference": "CSAFPID-277392"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.11 when installed on Cisco Firepower 1000 Series",
"product_id": "CSAFPID-280999:277393"
},
"product_reference": "CSAFPID-280999",
"relates_to_product_reference": "CSAFPID-277393"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.11 when installed on Cisco ASA 5500-X Series Firewalls",
"product_id": "CSAFPID-280999:277437"
},
"product_reference": "CSAFPID-280999",
"relates_to_product_reference": "CSAFPID-277437"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.11 when installed on Cisco 3000 Series Industrial Security Appliances (ISA)",
"product_id": "CSAFPID-280999:277438"
},
"product_reference": "CSAFPID-280999",
"relates_to_product_reference": "CSAFPID-277438"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.11 when installed on Cisco Firepower 9000 Series",
"product_id": "CSAFPID-280999:277440"
},
"product_reference": "CSAFPID-280999",
"relates_to_product_reference": "CSAFPID-277440"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.11 when installed on Cisco Firepower 4100 Series",
"product_id": "CSAFPID-280999:277441"
},
"product_reference": "CSAFPID-280999",
"relates_to_product_reference": "CSAFPID-277441"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Cisco Firepower Threat Defense Software 6.4.0.11 when installed on Cisco Secure Firewall Threat Defense Virtual",
"product_id": "CSAFPID-280999:277464"
},
"product_reference": "CSAFPID-280999",
"relates_to_product_reference": "CSAFPID-277464"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-40114",
"ids": [
{
"system_name": "Cisco Bug ID",
"text": "CSCvt57503"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCvx29001"
}
],
"notes": [
{
"category": "other",
"text": "Complete.",
"title": "Affected Product Comprehensiveness"
}
],
"product_status": {
"known_affected": [
"CSAFPID-225862:277392",
"CSAFPID-225862:277393",
"CSAFPID-225862:277437",
"CSAFPID-225862:277438",
"CSAFPID-225862:277440",
"CSAFPID-225862:277441",
"CSAFPID-225862:277464",
"CSAFPID-233334:277392",
"CSAFPID-233334:277437",
"CSAFPID-233334:277438",
"CSAFPID-233334:277440",
"CSAFPID-233334:277441",
"CSAFPID-233334:277464",
"CSAFPID-245396:277392",
"CSAFPID-245396:277437",
"CSAFPID-245396:277438",
"CSAFPID-245396:277440",
"CSAFPID-245396:277441",
"CSAFPID-245396:277464",
"CSAFPID-245397:277392",
"CSAFPID-245397:277437",
"CSAFPID-245397:277438",
"CSAFPID-245397:277440",
"CSAFPID-245397:277441",
"CSAFPID-245397:277464",
"CSAFPID-245398:277392",
"CSAFPID-245398:277437",
"CSAFPID-245398:277438",
"CSAFPID-245398:277440",
"CSAFPID-245398:277441",
"CSAFPID-245398:277464",
"CSAFPID-247893:277392",
"CSAFPID-247893:277437",
"CSAFPID-247893:277438",
"CSAFPID-247893:277440",
"CSAFPID-247893:277441",
"CSAFPID-247893:277464",
"CSAFPID-247894:277392",
"CSAFPID-247894:277437",
"CSAFPID-247894:277438",
"CSAFPID-247894:277440",
"CSAFPID-247894:277441",
"CSAFPID-247894:277464",
"CSAFPID-248816:277392",
"CSAFPID-248816:277437",
"CSAFPID-248816:277438",
"CSAFPID-248816:277440",
"CSAFPID-248816:277441",
"CSAFPID-248816:277464",
"CSAFPID-251756:277392",
"CSAFPID-251756:277437",
"CSAFPID-251756:277438",
"CSAFPID-251756:277440",
"CSAFPID-251756:277441",
"CSAFPID-251756:277464",
"CSAFPID-251757:277392",
"CSAFPID-251757:277437",
"CSAFPID-251757:277438",
"CSAFPID-251757:277440",
"CSAFPID-251757:277441",
"CSAFPID-251757:277464",
"CSAFPID-258063:277392",
"CSAFPID-258063:277437",
"CSAFPID-258063:277438",
"CSAFPID-258063:277440",
"CSAFPID-258063:277441",
"CSAFPID-258063:277464",
"CSAFPID-258064:277392",
"CSAFPID-258064:277437",
"CSAFPID-258064:277438",
"CSAFPID-258064:277440",
"CSAFPID-258064:277441",
"CSAFPID-258064:277464",
"CSAFPID-258915:277392",
"CSAFPID-258915:277437",
"CSAFPID-258915:277438",
"CSAFPID-258915:277440",
"CSAFPID-258915:277441",
"CSAFPID-258915:277464",
"CSAFPID-265011:277392",
"CSAFPID-265011:277437",
"CSAFPID-265011:277438",
"CSAFPID-265011:277440",
"CSAFPID-265011:277441",
"CSAFPID-265011:277464",
"CSAFPID-265014:277392",
"CSAFPID-265014:277393",
"CSAFPID-265014:277437",
"CSAFPID-265014:277438",
"CSAFPID-265014:277440",
"CSAFPID-265014:277441",
"CSAFPID-265014:277464",
"CSAFPID-265015:277392",
"CSAFPID-265015:277437",
"CSAFPID-265015:277438",
"CSAFPID-265015:277440",
"CSAFPID-265015:277441",
"CSAFPID-265015:277464",
"CSAFPID-265950:277392",
"CSAFPID-265950:277393",
"CSAFPID-265950:277437",
"CSAFPID-265950:277438",
"CSAFPID-265950:277440",
"CSAFPID-265950:277441",
"CSAFPID-265950:277464",
"CSAFPID-267675:277392",
"CSAFPID-267675:277437",
"CSAFPID-267675:277438",
"CSAFPID-267675:277440",
"CSAFPID-267675:277441",
"CSAFPID-267675:277464",
"CSAFPID-267676:277392",
"CSAFPID-267676:277437",
"CSAFPID-267676:277438",
"CSAFPID-267676:277440",
"CSAFPID-267676:277441",
"CSAFPID-267676:277464",
"CSAFPID-268602:277392",
"CSAFPID-268602:277393",
"CSAFPID-268602:277437",
"CSAFPID-268602:277438",
"CSAFPID-268602:277440",
"CSAFPID-268602:277441",
"CSAFPID-268602:277464",
"CSAFPID-275475:277392",
"CSAFPID-275475:277437",
"CSAFPID-275475:277438",
"CSAFPID-275475:277440",
"CSAFPID-275475:277441",
"CSAFPID-275475:277464",
"CSAFPID-276372:277392",
"CSAFPID-276372:277393",
"CSAFPID-276372:277437",
"CSAFPID-276372:277438",
"CSAFPID-276372:277440",
"CSAFPID-276372:277441",
"CSAFPID-276372:277464",
"CSAFPID-276373:277392",
"CSAFPID-276373:277393",
"CSAFPID-276373:277437",
"CSAFPID-276373:277438",
"CSAFPID-276373:277440",
"CSAFPID-276373:277441",
"CSAFPID-276373:277464",
"CSAFPID-276933:277392",
"CSAFPID-276933:277393",
"CSAFPID-276933:277437",
"CSAFPID-276933:277438",
"CSAFPID-276933:277440",
"CSAFPID-276933:277441",
"CSAFPID-276933:277464",
"CSAFPID-276934:277392",
"CSAFPID-276934:277393",
"CSAFPID-276934:277437",
"CSAFPID-276934:277438",
"CSAFPID-276934:277440",
"CSAFPID-276934:277441",
"CSAFPID-276934:277464",
"CSAFPID-276935:277392",
"CSAFPID-276935:277393",
"CSAFPID-276935:277437",
"CSAFPID-276935:277438",
"CSAFPID-276935:277440",
"CSAFPID-276935:277441",
"CSAFPID-276935:277464",
"CSAFPID-278397:277392",
"CSAFPID-278397:277393",
"CSAFPID-278397:277437",
"CSAFPID-278397:277438",
"CSAFPID-278397:277440",
"CSAFPID-278397:277441",
"CSAFPID-278397:277464",
"CSAFPID-278503:277392",
"CSAFPID-278503:277437",
"CSAFPID-278503:277438",
"CSAFPID-278503:277440",
"CSAFPID-278503:277441",
"CSAFPID-278503:277464",
"CSAFPID-278885:277392",
"CSAFPID-278885:277393",
"CSAFPID-278885:277437",
"CSAFPID-278885:277438",
"CSAFPID-278885:277440",
"CSAFPID-278885:277441",
"CSAFPID-278885:277464",
"CSAFPID-280013:277392",
"CSAFPID-280013:277393",
"CSAFPID-280013:277437",
"CSAFPID-280013:277438",
"CSAFPID-280013:277440",
"CSAFPID-280013:277441",
"CSAFPID-280013:277464",
"CSAFPID-280662:277392",
"CSAFPID-280662:277393",
"CSAFPID-280662:277437",
"CSAFPID-280662:277438",
"CSAFPID-280662:277440",
"CSAFPID-280662:277441",
"CSAFPID-280662:277464",
"CSAFPID-280999:277392",
"CSAFPID-280999:277393",
"CSAFPID-280999:277437",
"CSAFPID-280999:277438",
"CSAFPID-280999:277440",
"CSAFPID-280999:277441",
"CSAFPID-280999:277464",
"CSAFPID-284172:277392",
"CSAFPID-284172:277437",
"CSAFPID-284172:277438",
"CSAFPID-284172:277440",
"CSAFPID-284172:277441",
"CSAFPID-284172:277464",
"CSAFPID-279755"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Cisco has released software updates that address this vulnerability.",
"product_ids": [
"CSAFPID-225862:277392",
"CSAFPID-225862:277393",
"CSAFPID-225862:277437",
"CSAFPID-225862:277438",
"CSAFPID-225862:277440",
"CSAFPID-225862:277441",
"CSAFPID-225862:277464",
"CSAFPID-233334:277392",
"CSAFPID-233334:277437",
"CSAFPID-233334:277438",
"CSAFPID-233334:277440",
"CSAFPID-233334:277441",
"CSAFPID-233334:277464",
"CSAFPID-245396:277392",
"CSAFPID-245396:277437",
"CSAFPID-245396:277438",
"CSAFPID-245396:277440",
"CSAFPID-245396:277441",
"CSAFPID-245396:277464",
"CSAFPID-245397:277392",
"CSAFPID-245397:277437",
"CSAFPID-245397:277438",
"CSAFPID-245397:277440",
"CSAFPID-245397:277441",
"CSAFPID-245397:277464",
"CSAFPID-245398:277392",
"CSAFPID-245398:277437",
"CSAFPID-245398:277438",
"CSAFPID-245398:277440",
"CSAFPID-245398:277441",
"CSAFPID-245398:277464",
"CSAFPID-247893:277392",
"CSAFPID-247893:277437",
"CSAFPID-247893:277438",
"CSAFPID-247893:277440",
"CSAFPID-247893:277441",
"CSAFPID-247893:277464",
"CSAFPID-247894:277392",
"CSAFPID-247894:277437",
"CSAFPID-247894:277438",
"CSAFPID-247894:277440",
"CSAFPID-247894:277441",
"CSAFPID-247894:277464",
"CSAFPID-248816:277392",
"CSAFPID-248816:277437",
"CSAFPID-248816:277438",
"CSAFPID-248816:277440",
"CSAFPID-248816:277441",
"CSAFPID-248816:277464",
"CSAFPID-251756:277392",
"CSAFPID-251756:277437",
"CSAFPID-251756:277438",
"CSAFPID-251756:277440",
"CSAFPID-251756:277441",
"CSAFPID-251756:277464",
"CSAFPID-251757:277392",
"CSAFPID-251757:277437",
"CSAFPID-251757:277438",
"CSAFPID-251757:277440",
"CSAFPID-251757:277441",
"CSAFPID-251757:277464",
"CSAFPID-258063:277392",
"CSAFPID-258063:277437",
"CSAFPID-258063:277438",
"CSAFPID-258063:277440",
"CSAFPID-258063:277441",
"CSAFPID-258063:277464",
"CSAFPID-258064:277392",
"CSAFPID-258064:277437",
"CSAFPID-258064:277438",
"CSAFPID-258064:277440",
"CSAFPID-258064:277441",
"CSAFPID-258064:277464",
"CSAFPID-258915:277392",
"CSAFPID-258915:277437",
"CSAFPID-258915:277438",
"CSAFPID-258915:277440",
"CSAFPID-258915:277441",
"CSAFPID-258915:277464",
"CSAFPID-265011:277392",
"CSAFPID-265011:277437",
"CSAFPID-265011:277438",
"CSAFPID-265011:277440",
"CSAFPID-265011:277441",
"CSAFPID-265011:277464",
"CSAFPID-265014:277392",
"CSAFPID-265014:277393",
"CSAFPID-265014:277437",
"CSAFPID-265014:277438",
"CSAFPID-265014:277440",
"CSAFPID-265014:277441",
"CSAFPID-265014:277464",
"CSAFPID-265015:277392",
"CSAFPID-265015:277437",
"CSAFPID-265015:277438",
"CSAFPID-265015:277440",
"CSAFPID-265015:277441",
"CSAFPID-265015:277464",
"CSAFPID-265950:277392",
"CSAFPID-265950:277393",
"CSAFPID-265950:277437",
"CSAFPID-265950:277438",
"CSAFPID-265950:277440",
"CSAFPID-265950:277441",
"CSAFPID-265950:277464",
"CSAFPID-267675:277392",
"CSAFPID-267675:277437",
"CSAFPID-267675:277438",
"CSAFPID-267675:277440",
"CSAFPID-267675:277441",
"CSAFPID-267675:277464",
"CSAFPID-267676:277392",
"CSAFPID-267676:277437",
"CSAFPID-267676:277438",
"CSAFPID-267676:277440",
"CSAFPID-267676:277441",
"CSAFPID-267676:277464",
"CSAFPID-268602:277392",
"CSAFPID-268602:277393",
"CSAFPID-268602:277437",
"CSAFPID-268602:277438",
"CSAFPID-268602:277440",
"CSAFPID-268602:277441",
"CSAFPID-268602:277464",
"CSAFPID-275475:277392",
"CSAFPID-275475:277437",
"CSAFPID-275475:277438",
"CSAFPID-275475:277440",
"CSAFPID-275475:277441",
"CSAFPID-275475:277464",
"CSAFPID-276372:277392",
"CSAFPID-276372:277393",
"CSAFPID-276372:277437",
"CSAFPID-276372:277438",
"CSAFPID-276372:277440",
"CSAFPID-276372:277441",
"CSAFPID-276372:277464",
"CSAFPID-276373:277392",
"CSAFPID-276373:277393",
"CSAFPID-276373:277437",
"CSAFPID-276373:277438",
"CSAFPID-276373:277440",
"CSAFPID-276373:277441",
"CSAFPID-276373:277464",
"CSAFPID-276933:277392",
"CSAFPID-276933:277393",
"CSAFPID-276933:277437",
"CSAFPID-276933:277438",
"CSAFPID-276933:277440",
"CSAFPID-276933:277441",
"CSAFPID-276933:277464",
"CSAFPID-276934:277392",
"CSAFPID-276934:277393",
"CSAFPID-276934:277437",
"CSAFPID-276934:277438",
"CSAFPID-276934:277440",
"CSAFPID-276934:277441",
"CSAFPID-276934:277464",
"CSAFPID-276935:277392",
"CSAFPID-276935:277393",
"CSAFPID-276935:277437",
"CSAFPID-276935:277438",
"CSAFPID-276935:277440",
"CSAFPID-276935:277441",
"CSAFPID-276935:277464",
"CSAFPID-278397:277392",
"CSAFPID-278397:277393",
"CSAFPID-278397:277437",
"CSAFPID-278397:277438",
"CSAFPID-278397:277440",
"CSAFPID-278397:277441",
"CSAFPID-278397:277464",
"CSAFPID-278503:277392",
"CSAFPID-278503:277437",
"CSAFPID-278503:277438",
"CSAFPID-278503:277440",
"CSAFPID-278503:277441",
"CSAFPID-278503:277464",
"CSAFPID-278885:277392",
"CSAFPID-278885:277393",
"CSAFPID-278885:277437",
"CSAFPID-278885:277438",
"CSAFPID-278885:277440",
"CSAFPID-278885:277441",
"CSAFPID-278885:277464",
"CSAFPID-280013:277392",
"CSAFPID-280013:277393",
"CSAFPID-280013:277437",
"CSAFPID-280013:277438",
"CSAFPID-280013:277440",
"CSAFPID-280013:277441",
"CSAFPID-280013:277464",
"CSAFPID-280662:277392",
"CSAFPID-280662:277393",
"CSAFPID-280662:277437",
"CSAFPID-280662:277438",
"CSAFPID-280662:277440",
"CSAFPID-280662:277441",
"CSAFPID-280662:277464",
"CSAFPID-280999:277392",
"CSAFPID-280999:277393",
"CSAFPID-280999:277437",
"CSAFPID-280999:277438",
"CSAFPID-280999:277440",
"CSAFPID-280999:277441",
"CSAFPID-280999:277464",
"CSAFPID-284172:277392",
"CSAFPID-284172:277437",
"CSAFPID-284172:277438",
"CSAFPID-284172:277440",
"CSAFPID-284172:277441",
"CSAFPID-284172:277464",
"CSAFPID-279755"
],
"url": "https://software.cisco.com"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-225862:277392",
"CSAFPID-225862:277393",
"CSAFPID-225862:277437",
"CSAFPID-225862:277438",
"CSAFPID-225862:277440",
"CSAFPID-225862:277441",
"CSAFPID-225862:277464",
"CSAFPID-233334:277392",
"CSAFPID-233334:277437",
"CSAFPID-233334:277438",
"CSAFPID-233334:277440",
"CSAFPID-233334:277441",
"CSAFPID-233334:277464",
"CSAFPID-245396:277392",
"CSAFPID-245396:277437",
"CSAFPID-245396:277438",
"CSAFPID-245396:277440",
"CSAFPID-245396:277441",
"CSAFPID-245396:277464",
"CSAFPID-245397:277392",
"CSAFPID-245397:277437",
"CSAFPID-245397:277438",
"CSAFPID-245397:277440",
"CSAFPID-245397:277441",
"CSAFPID-245397:277464",
"CSAFPID-245398:277392",
"CSAFPID-245398:277437",
"CSAFPID-245398:277438",
"CSAFPID-245398:277440",
"CSAFPID-245398:277441",
"CSAFPID-245398:277464",
"CSAFPID-247893:277392",
"CSAFPID-247893:277437",
"CSAFPID-247893:277438",
"CSAFPID-247893:277440",
"CSAFPID-247893:277441",
"CSAFPID-247893:277464",
"CSAFPID-247894:277392",
"CSAFPID-247894:277437",
"CSAFPID-247894:277438",
"CSAFPID-247894:277440",
"CSAFPID-247894:277441",
"CSAFPID-247894:277464",
"CSAFPID-248816:277392",
"CSAFPID-248816:277437",
"CSAFPID-248816:277438",
"CSAFPID-248816:277440",
"CSAFPID-248816:277441",
"CSAFPID-248816:277464",
"CSAFPID-251756:277392",
"CSAFPID-251756:277437",
"CSAFPID-251756:277438",
"CSAFPID-251756:277440",
"CSAFPID-251756:277441",
"CSAFPID-251756:277464",
"CSAFPID-251757:277392",
"CSAFPID-251757:277437",
"CSAFPID-251757:277438",
"CSAFPID-251757:277440",
"CSAFPID-251757:277441",
"CSAFPID-251757:277464",
"CSAFPID-258063:277392",
"CSAFPID-258063:277437",
"CSAFPID-258063:277438",
"CSAFPID-258063:277440",
"CSAFPID-258063:277441",
"CSAFPID-258063:277464",
"CSAFPID-258064:277392",
"CSAFPID-258064:277437",
"CSAFPID-258064:277438",
"CSAFPID-258064:277440",
"CSAFPID-258064:277441",
"CSAFPID-258064:277464",
"CSAFPID-258915:277392",
"CSAFPID-258915:277437",
"CSAFPID-258915:277438",
"CSAFPID-258915:277440",
"CSAFPID-258915:277441",
"CSAFPID-258915:277464",
"CSAFPID-265011:277392",
"CSAFPID-265011:277437",
"CSAFPID-265011:277438",
"CSAFPID-265011:277440",
"CSAFPID-265011:277441",
"CSAFPID-265011:277464",
"CSAFPID-265014:277392",
"CSAFPID-265014:277393",
"CSAFPID-265014:277437",
"CSAFPID-265014:277438",
"CSAFPID-265014:277440",
"CSAFPID-265014:277441",
"CSAFPID-265014:277464",
"CSAFPID-265015:277392",
"CSAFPID-265015:277437",
"CSAFPID-265015:277438",
"CSAFPID-265015:277440",
"CSAFPID-265015:277441",
"CSAFPID-265015:277464",
"CSAFPID-265950:277392",
"CSAFPID-265950:277393",
"CSAFPID-265950:277437",
"CSAFPID-265950:277438",
"CSAFPID-265950:277440",
"CSAFPID-265950:277441",
"CSAFPID-265950:277464",
"CSAFPID-267675:277392",
"CSAFPID-267675:277437",
"CSAFPID-267675:277438",
"CSAFPID-267675:277440",
"CSAFPID-267675:277441",
"CSAFPID-267675:277464",
"CSAFPID-267676:277392",
"CSAFPID-267676:277437",
"CSAFPID-267676:277438",
"CSAFPID-267676:277440",
"CSAFPID-267676:277441",
"CSAFPID-267676:277464",
"CSAFPID-268602:277392",
"CSAFPID-268602:277393",
"CSAFPID-268602:277437",
"CSAFPID-268602:277438",
"CSAFPID-268602:277440",
"CSAFPID-268602:277441",
"CSAFPID-268602:277464",
"CSAFPID-275475:277392",
"CSAFPID-275475:277437",
"CSAFPID-275475:277438",
"CSAFPID-275475:277440",
"CSAFPID-275475:277441",
"CSAFPID-275475:277464",
"CSAFPID-276372:277392",
"CSAFPID-276372:277393",
"CSAFPID-276372:277437",
"CSAFPID-276372:277438",
"CSAFPID-276372:277440",
"CSAFPID-276372:277441",
"CSAFPID-276372:277464",
"CSAFPID-276373:277392",
"CSAFPID-276373:277393",
"CSAFPID-276373:277437",
"CSAFPID-276373:277438",
"CSAFPID-276373:277440",
"CSAFPID-276373:277441",
"CSAFPID-276373:277464",
"CSAFPID-276933:277392",
"CSAFPID-276933:277393",
"CSAFPID-276933:277437",
"CSAFPID-276933:277438",
"CSAFPID-276933:277440",
"CSAFPID-276933:277441",
"CSAFPID-276933:277464",
"CSAFPID-276934:277392",
"CSAFPID-276934:277393",
"CSAFPID-276934:277437",
"CSAFPID-276934:277438",
"CSAFPID-276934:277440",
"CSAFPID-276934:277441",
"CSAFPID-276934:277464",
"CSAFPID-276935:277392",
"CSAFPID-276935:277393",
"CSAFPID-276935:277437",
"CSAFPID-276935:277438",
"CSAFPID-276935:277440",
"CSAFPID-276935:277441",
"CSAFPID-276935:277464",
"CSAFPID-278397:277392",
"CSAFPID-278397:277393",
"CSAFPID-278397:277437",
"CSAFPID-278397:277438",
"CSAFPID-278397:277440",
"CSAFPID-278397:277441",
"CSAFPID-278397:277464",
"CSAFPID-278503:277392",
"CSAFPID-278503:277437",
"CSAFPID-278503:277438",
"CSAFPID-278503:277440",
"CSAFPID-278503:277441",
"CSAFPID-278503:277464",
"CSAFPID-278885:277392",
"CSAFPID-278885:277393",
"CSAFPID-278885:277437",
"CSAFPID-278885:277438",
"CSAFPID-278885:277440",
"CSAFPID-278885:277441",
"CSAFPID-278885:277464",
"CSAFPID-280013:277392",
"CSAFPID-280013:277393",
"CSAFPID-280013:277437",
"CSAFPID-280013:277438",
"CSAFPID-280013:277440",
"CSAFPID-280013:277441",
"CSAFPID-280013:277464",
"CSAFPID-280662:277392",
"CSAFPID-280662:277393",
"CSAFPID-280662:277437",
"CSAFPID-280662:277438",
"CSAFPID-280662:277440",
"CSAFPID-280662:277441",
"CSAFPID-280662:277464",
"CSAFPID-280999:277392",
"CSAFPID-280999:277393",
"CSAFPID-280999:277437",
"CSAFPID-280999:277438",
"CSAFPID-280999:277440",
"CSAFPID-280999:277441",
"CSAFPID-280999:277464",
"CSAFPID-284172:277392",
"CSAFPID-284172:277437",
"CSAFPID-284172:277438",
"CSAFPID-284172:277440",
"CSAFPID-284172:277441",
"CSAFPID-284172:277464",
"CSAFPID-279755"
]
}
],
"title": "Multiple Cisco Products Snort Denial of Service Vulnerability"
}
]
}
wid-sec-w-2023-0335
Vulnerability from csaf_certbund
Published
2021-10-27 22:00
Modified
2023-02-12 23:00
Summary
Cisco Firepower und Snort: Mehrere Schwachstellen ermöglichen Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Firepower ist eine Firewall-Plattform von Cisco
Snort ist ein freies Network Intrusion Prevention System (NIPS) und ein Network Intrusion Detection System (NIDS) der Firma Sourcefire.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Cisco Firepower und Snort ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- CISCO Appliance
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Firepower ist eine Firewall-Plattform von Cisco\r\nSnort ist ein freies Network Intrusion Prevention System (NIPS) und ein Network Intrusion Detection System (NIDS) der Firma Sourcefire.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Cisco Firepower und Snort ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- CISCO Appliance",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2023-0335 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2023-0335.json"
},
{
"category": "self",
"summary": "WID-SEC-2023-0335 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0335"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-3317 vom 2023-02-11",
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html"
},
{
"category": "external",
"summary": "Cisco Security Advisory vom 2021-10-27",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-RywH7ezM"
},
{
"category": "external",
"summary": "Cisco Security Advisory vom 2021-10-27",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU"
}
],
"source_lang": "en-US",
"title": "Cisco Firepower und Snort: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2023-02-12T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:43:22.860+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2023-0335",
"initial_release_date": "2021-10-27T22:00:00.000+00:00",
"revision_history": [
{
"date": "2021-10-27T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2023-02-12T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Debian aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Cisco Firepower",
"product": {
"name": "Cisco Firepower",
"product_id": "T011337",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:firepower:-"
}
}
}
],
"category": "vendor",
"name": "Cisco"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Open Source Snort \u003c 2.9.18",
"product": {
"name": "Open Source Snort \u003c 2.9.18",
"product_id": "T020193",
"product_identification_helper": {
"cpe": "cpe:/a:snort:snort:2.9.18"
}
}
},
{
"category": "product_name",
"name": "Open Source Snort \u003c 3.1.0.100",
"product": {
"name": "Open Source Snort \u003c 3.1.0.100",
"product_id": "T020854",
"product_identification_helper": {
"cpe": "cpe:/a:snort:snort:3.1.0.100"
}
}
}
],
"category": "product_name",
"name": "Snort"
}
],
"category": "vendor",
"name": "Open Source"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-40114",
"notes": [
{
"category": "description",
"text": "In Cisco Firepower existieren mehrere Schwachstellen. Die Fehler bestehen in der Komponente Snort aufgrund einer unsachgem\u00e4\u00dfen Verwaltung der Speicherressourcen, w\u00e4hrend die Snort-Erkennungs-Engine ICMP-Pakete verarbeitet und einer unsachgem\u00e4\u00dfen Behandlung der Aktionen \"Blockieren mit Reset\" oder \"Interaktives Blockieren mit Reset\", wenn eine Regel ohne entsprechende Einschr\u00e4nkungen konfiguriert ist. Ein entfernter anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
}
],
"product_status": {
"known_affected": [
"2951",
"T011337"
]
},
"release_date": "2021-10-27T22:00:00.000+00:00",
"title": "CVE-2021-40114"
},
{
"cve": "CVE-2021-40116",
"notes": [
{
"category": "description",
"text": "In Cisco Firepower existieren mehrere Schwachstellen. Die Fehler bestehen in der Komponente Snort aufgrund einer unsachgem\u00e4\u00dfen Verwaltung der Speicherressourcen, w\u00e4hrend die Snort-Erkennungs-Engine ICMP-Pakete verarbeitet und einer unsachgem\u00e4\u00dfen Behandlung der Aktionen \"Blockieren mit Reset\" oder \"Interaktives Blockieren mit Reset\", wenn eine Regel ohne entsprechende Einschr\u00e4nkungen konfiguriert ist. Ein entfernter anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
}
],
"product_status": {
"known_affected": [
"2951",
"T011337"
]
},
"release_date": "2021-10-27T22:00:00.000+00:00",
"title": "CVE-2021-40116"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…