Vulnerability Bulletins

Cisco Firepower Threat Defense Software ICMPv6 with Snort 2 Denial of Service Vulnerability

System information

Affected software Cisco


A vulnerability in ICMPv6 inspection when configured with the Snort 2 detection engine for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the CPU of an affected device to spike to 100 percent, which could stop all traffic processing and result in a denial of service (DoS) condition. FTD management traffic is not affected by this vulnerability. This vulnerability is due to improper error checking when parsing fields within the ICMPv6

More info:

Standar resources

Property Value
CVE CVE-2023-20083.

Version history

Version Comments Date
Ministerio de Defensa