A vulnerability in the software-based SSL/TLS message handler of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient validation of SSL/TLS messages when the device performs software-based SSL decryption. An attacker could exploit this vulnerability by sending a crafted SSL/TLS message through an affected device. SSL/TLS messages sent to an affected device do not trigger this vulnerability. A successful exploit could allow the attacker to cause a process to crash. This crash would then trigger a reload of the device. No manual intervention is needed to recover the device after the reload.
References
Link | Resource |
---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-ssl-decrypt-dos-DdyLuK6c | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2021-04-29 11:15
Updated : 2022-08-05 09:17
NVD link : CVE-2021-1402
Mitre link : CVE-2021-1402
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
cisco
- firepower_threat_defense_virtual
- firepower_1140
- firepower_2140
- asa_5545-x
- firepower_2120
- isa_3000
- firepower_threat_defense
- firepower_2130
- firepower_2110
- firepower_1150
- asa_5525-x
- asa_5515-x
- asa_5512-x
- firepower_1120
- firepower_1010
- asa_5555-x