CVSS 3.1 Score 4.0 of 10 (medium)


Published Nov 1, 2023
Updated: Jan 25, 2024
CWE ID 244


CVE-2023-20177 is a vulnerability in the SSL file policy implementation of Cisco Firepower Threat Defense (FTD) Software. This vulnerability allows an unauthenticated, remote attacker to cause the Snort 3 detection engine to unexpectedly restart. The vulnerability occurs when an SSL/TLS connection is configured with a URL Category and the Snort 3 detection engine inspects the connection. The affected products include Cisco Firepower Threat Defense (FTD) Software versions srjKCm, srjKCl, srjKCk, o2P7xz, srjKCg, nGdMF1, o5Eh7R, o5Eh90, kVHTTG, o1lwZJ, o1lwZI, o1lwZF, o1lwZE, srjKCe, o1lwZH, o1lwZG, q6Du9Y, r6WizN, q6Du9Z, r6WizO and r6WizP. To remediate this vulnerability, organizations should apply the necessary updates or patches provided by Cisco. This vulnerability poses a medium risk to organizations as it could result in either a bypass or denial of service condition depending on device configuration.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-20177 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options