Sign-up

ID

VAR-201704-0955


CVE

CVE-2017-3885


TITLE

Cisco Firepower System Software management resource management vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-003076

DESCRIPTION

A vulnerability in the detection engine reassembly of Secure Sockets Layer (SSL) packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition because the Snort process consumes a high level of CPU resources. Affected Products: This vulnerability affects Cisco Firepower System Software running software releases 6.0.0, 6.1.0, 6.2.0, or 6.2.1 when the device is configured with an SSL policy that has at least one rule specifying traffic decryption. More Information: CSCvc58563. Known Affected Releases: 6.0.0 6.1.0 6.2.0 6.2.1. Cisco Firepower System Software contains resource management vulnerabilities. Vendors have confirmed this vulnerability Bug ID CSCvc58563 It is released as.Service operation interruption (DoS) An attack may be carried out. Successful exploitation of the issue will cause excessive CPU resource consumption, resulting in a denial-of-service condition. This issue is being tracked by Cisco Bug ID CSCvc58563. Firepower System Software 6.0.0, 6.1.0, 6.2.0, and 6.2.1 are vulnerable

Trust: 1.98

sources: NVD: CVE-2017-3885 // JVNDB: JVNDB-2017-003076 // BID: 97451 // VULHUB: VHN-112088

AFFECTED PRODUCTS

vendor:ciscomodel:firepower management centerscope:eqversion:6.0.0

Trust: 1.4

vendor:ciscomodel:firepower management centerscope:eqversion:6.1.0

Trust: 1.4

vendor:ciscomodel:firepower management centerscope:eqversion:6.2.0

Trust: 1.4

vendor:ciscomodel:firepower management centerscope:eqversion:6.2.1

Trust: 1.4

vendor:ciscomodel:secure firewall management centerscope:eqversion:6.2.1

Trust: 1.0

vendor:ciscomodel:secure firewall management centerscope:eqversion:6.1.0

Trust: 1.0

vendor:ciscomodel:secure firewall management centerscope:eqversion:6.2.0

Trust: 1.0

vendor:ciscomodel:secure firewall management centerscope:eqversion:6.0.0

Trust: 1.0

vendor:ciscomodel:firepower system softwarescope:eqversion:6.2.1

Trust: 0.3

vendor:ciscomodel:firepower system softwarescope:eqversion:6.2

Trust: 0.3

vendor:ciscomodel:firepower system softwarescope:eqversion:6.1

Trust: 0.3

vendor:ciscomodel:firepower system softwarescope:eqversion:6.0

Trust: 0.3

sources: BID: 97451 // JVNDB: JVNDB-2017-003076 // CNNVD: CNNVD-201704-438 // NVD: CVE-2017-3885

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-3885
value: MEDIUM

Trust: 1.0

NVD: CVE-2017-3885
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201704-438
value: MEDIUM

Trust: 0.6

VULHUB: VHN-112088
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2017-3885
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-112088
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-3885
baseSeverity: MEDIUM
baseScore: 5.9
vectorString: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: HIGH
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 2.2
impactScore: 3.6
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-112088 // JVNDB: JVNDB-2017-003076 // CNNVD: CNNVD-201704-438 // NVD: CVE-2017-3885

PROBLEMTYPE DATA

problemtype:CWE-400

Trust: 1.1

problemtype:CWE-399

Trust: 0.9

sources: VULHUB: VHN-112088 // JVNDB: JVNDB-2017-003076 // NVD: CVE-2017-3885

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201704-438

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201704-438

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-003076

PATCH
title:cisco-sa-20170405-cfpwurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-cfpw
Trust: 0.8
title:Cisco Firepower System Software Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=69161
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2017-003076 // 
            
            
            
            CNNVD: CNNVD-201704-438

EXTERNAL IDS
db:NVDid:CVE-2017-3885
Trust: 2.8
db:BIDid:97451
Trust: 2.0
db:JVNDBid:JVNDB-2017-003076
Trust: 0.8
db:CNNVDid:CNNVD-201704-438
Trust: 0.7
db:VULHUBid:VHN-112088
Trust: 0.1
sources:
            
            
            VULHUB: VHN-112088 // 
            
            
            
            BID: 97451 // 
            
            
            
            JVNDB: JVNDB-2017-003076 // 
            
            
            
            CNNVD: CNNVD-201704-438 // 
            
            
            
            NVD: CVE-2017-3885

REFERENCES
url:http://www.securityfocus.com/bid/97451
Trust: 1.7
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170405-cfpw
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-3885
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-3885
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170405-cfpw 
Trust: 0.3
sources:
            
            
            VULHUB: VHN-112088 // 
            
            
            
            BID: 97451 // 
            
            
            
            JVNDB: JVNDB-2017-003076 // 
            
            
            
            CNNVD: CNNVD-201704-438 // 
            
            
            
            NVD: CVE-2017-3885

CREDITS
The vendor reported this issue.
Trust: 0.3
sources:
            
            
            BID: 97451

SOURCES
db:VULHUBid:VHN-112088
db:BIDid:97451
db:JVNDBid:JVNDB-2017-003076
db:CNNVDid:CNNVD-201704-438
db:NVDid:CVE-2017-3885

LAST UPDATE DATE
2024-11-27T22:43:52.148000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-112088date:2019-10-03T00:00:00
db:BIDid:97451date:2017-04-11T00:03:00
db:JVNDBid:JVNDB-2017-003076date:2017-05-12T00:00:00
db:CNNVDid:CNNVD-201704-438date:2019-10-23T00:00:00
db:NVDid:CVE-2017-3885date:2024-11-26T16:09:02.407

SOURCES RELEASE DATE
db:VULHUBid:VHN-112088date:2017-04-07T00:00:00
db:BIDid:97451date:2017-04-05T00:00:00
db:JVNDBid:JVNDB-2017-003076date:2017-05-12T00:00:00
db:CNNVDid:CNNVD-201704-438date:2017-04-11T00:00:00
db:NVDid:CVE-2017-3885date:2017-04-07T17:59:00.387