CVE-2024-20407

MEDIUM EPSS 30.9%

Published Oct 23, 20241y ago · Modified Jun 17, 20261w ago

5.8 CVSS 3.1

Medium

Published Oct 23, 2024 1y ago

Last Modified Jun 17, 2026 1w ago

Description

A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies on an affected system. Devices that are configured with Snort 2 are not affected by this vulnerability. This vulnerability is due to a logic error when handling embryonic (half-open) TCP connections. An attacker could exploit this vulnerability by sending a crafted traffic pattern through an affected device. A successful exploit could allow unintended traffic to enter the network protected by the affected device.

CVSS Details

Base Score

5.8

Exploitability

3.9

Impact

1.4

Vector string

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Attack Vector Network

Attack Complexity Low

Privileges Required None

User Interaction None

Scope Changed

Confidentiality None

Integrity Low

Availability None

Threat Intelligence

EPSS Exploit Probability

30.9% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-399

Affected Products 90

Vendor	Product	Version	Range
cisco	firepower_threat_defense	6.2.3	any
cisco	firepower_threat_defense	6.2.3.1	any
cisco	firepower_threat_defense	6.2.3.2	any
cisco	firepower_threat_defense	6.2.3.3	any
cisco	firepower_threat_defense	6.2.3.4	any
cisco	firepower_threat_defense	6.2.3.5	any
cisco	firepower_threat_defense	6.2.3.6	any
cisco	firepower_threat_defense	6.2.3.7	any
cisco	firepower_threat_defense	6.2.3.8	any
cisco	firepower_threat_defense	6.2.3.9	any
cisco	firepower_threat_defense	6.2.3.10	any
cisco	firepower_threat_defense	6.2.3.11	any
cisco	firepower_threat_defense	6.2.3.12	any
cisco	firepower_threat_defense	6.2.3.13	any
cisco	firepower_threat_defense	6.2.3.14	any
cisco	firepower_threat_defense	6.2.3.15	any
cisco	firepower_threat_defense	6.2.3.16	any
cisco	firepower_threat_defense	6.2.3.17	any
cisco	firepower_threat_defense	6.2.3.18	any
cisco	firepower_threat_defense	6.4.0	any
cisco	firepower_threat_defense	6.4.0.1	any
cisco	firepower_threat_defense	6.4.0.2	any
cisco	firepower_threat_defense	6.4.0.3	any
cisco	firepower_threat_defense	6.4.0.4	any
cisco	firepower_threat_defense	6.4.0.5	any
cisco	firepower_threat_defense	6.4.0.6	any
cisco	firepower_threat_defense	6.4.0.7	any
cisco	firepower_threat_defense	6.4.0.8	any
cisco	firepower_threat_defense	6.4.0.9	any
cisco	firepower_threat_defense	6.4.0.10	any
cisco	firepower_threat_defense	6.4.0.11	any
cisco	firepower_threat_defense	6.4.0.12	any
cisco	firepower_threat_defense	6.4.0.13	any
cisco	firepower_threat_defense	6.4.0.14	any
cisco	firepower_threat_defense	6.4.0.15	any
cisco	firepower_threat_defense	6.4.0.16	any
cisco	firepower_threat_defense	6.4.0.17	any
cisco	firepower_threat_defense	6.4.0.18	any
cisco	firepower_threat_defense	6.6.0	any
cisco	firepower_threat_defense	6.6.0.1	any
cisco	firepower_threat_defense	6.6.1	any
cisco	firepower_threat_defense	6.6.3	any
cisco	firepower_threat_defense	6.6.4	any
cisco	firepower_threat_defense	6.6.5	any
cisco	firepower_threat_defense	6.6.5.1	any
cisco	firepower_threat_defense	6.6.5.2	any
cisco	firepower_threat_defense	6.6.7	any
cisco	firepower_threat_defense	6.6.7.1	any
cisco	firepower_threat_defense	6.6.7.2	any
cisco	firepower_threat_defense	6.7.0	any
cisco	firepower_threat_defense	6.7.0.1	any
cisco	firepower_threat_defense	6.7.0.2	any
cisco	firepower_threat_defense	6.7.0.3	any
cisco	firepower_threat_defense	7.0.0	any
cisco	firepower_threat_defense	7.0.0.1	any
cisco	firepower_threat_defense	7.0.1	any
cisco	firepower_threat_defense	7.0.1.1	any
cisco	firepower_threat_defense	7.0.2	any
cisco	firepower_threat_defense	7.0.2.1	any
cisco	firepower_threat_defense	7.0.3	any
cisco	firepower_threat_defense	7.0.4	any
cisco	firepower_threat_defense	7.0.5	any
cisco	firepower_threat_defense	7.0.6	any
cisco	firepower_threat_defense	7.0.6.1	any
cisco	firepower_threat_defense	7.0.6.2	any
cisco	firepower_threat_defense	7.1.0	any
cisco	firepower_threat_defense	7.1.0.1	any
cisco	firepower_threat_defense	7.1.0.2	any
cisco	firepower_threat_defense	7.1.0.3	any
cisco	firepower_threat_defense	7.2.0	any
cisco	firepower_threat_defense	7.2.0.1	any
cisco	firepower_threat_defense	7.2.1	any
cisco	firepower_threat_defense	7.2.2	any
cisco	firepower_threat_defense	7.2.3	any
cisco	firepower_threat_defense	7.2.4	any
cisco	firepower_threat_defense	7.2.4.1	any
cisco	firepower_threat_defense	7.2.5	any
cisco	firepower_threat_defense	7.2.5.1	any
cisco	firepower_threat_defense	7.2.5.2	any
cisco	firepower_threat_defense	7.2.6	any
cisco	firepower_threat_defense	7.2.7	any
cisco	firepower_threat_defense	7.2.8	any
cisco	firepower_threat_defense	7.2.8.1	any
cisco	firepower_threat_defense	7.3.0	any
cisco	firepower_threat_defense	7.3.1	any
cisco	firepower_threat_defense	7.3.1.1	any
cisco	firepower_threat_defense	7.3.1.2	any
cisco	firepower_threat_defense	7.4.0	any
cisco	firepower_threat_defense	7.4.1	any
cisco	firepower_threat_defense	7.4.1.1	any

References 1

sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-bypass-PTry37fX

Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.