CVE-2024-20342 MEDIUM

CVE-2024-20342: Cisco Firepower Threat Defense Software Rate Filter Bypass Vulnerability

Vendor Cisco
Product Cisco Firepower Threat Defense Software
Weakness CWE-1025
Published October 23, 2024
Last update January 13, 2025

CVSS base score

5.8/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

What the vulnerability does

01Description

Multiple Cisco products are affected by a vulnerability in the rate filtering feature of the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured rate limiting filter.  This vulnerability is due to an incorrect connection count comparison. An attacker could exploit this vulnerability by sending traffic through an affected device at a rate that exceeds a configured rate filter. A successful exploit could allow the attacker to successfully bypass the rate filter. This could allow unintended traffic to enter the network protected by the affected device.

Key dates

02Disclosure timeline

October 23, 2024 CVE published
January 13, 2025 Record updated