Vulnslist

find the latest Cisco vulnerabilities

Cisco Secure Firewall Threat Defense Software Snort 3 SSL Memory Management Denial of Service Vulnerability

cisco-sa-ftd-snort3ssl-FBEKYXpH · Medium · Published · Updated

A vulnerability in the memory management handling for the Snort 3 Detection Engine of Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart. This vulnerability is due to a logic error in memory management when a device is performing Snort 3 SSL packet inspection. An attacker could exploit this vulnerability by sending crafted SSL packets through an established connection to be parsed by the Snort 3 Detection Engine. A successful exploit could allow the attacker to cause a denial of service (DoS) condition when the Snort 3 Detection Engine unexpectedly restarts. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.  This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3ssl-FBEKYXpH This advisory is part of the March 2026 release of the Cisco Secure Firewall ASA, Secure FMC, and Secure FTD Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: March 2026 Semiannual Cisco Secure Firewall ASA, Secure FMC, and Secure FTD Software Security Advisory Bundled Publication.

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEsCVE-2026-20052
Cisco Bug IDsCSCwn63410
CVSS ScoreBase 5.8
Base 5.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L/E:X/RL:X/RC:X
Product Names From Source
Cisco Secure Firewall Threat Defense (FTD) Software 7.4.0, Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1, Cisco Secure Firewall Threat Defense (FTD) Software 7.4.1.1, Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2, Cisco Secure Firewall Threat Defense (FTD) Software 7.4.2.1, Cisco Secure Firewall Threat Defense (FTD) Software 7.6.0, Cisco Secure Firewall Threat Defense (FTD) Software, Cisco Firepower 2100 Series, Cisco Firepower 1000 Series, Cisco 3000 Series Industrial Security Appliances (ISA), Cisco Firepower 9000 Series, Cisco Firepower 4100 Series, Cisco Secure Firewall Threat Defense Virtual, Cisco Secure Firewall 3100 Series, Cisco Secure Firewall 4200 Series, Cisco Secure Firewall 1200 Series

Related Products

Product CVE Evidence
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software CVE-2026-20052 Cisco OpenVuln
Cisco Secure Firewall Threat Defense (FTD) Software CVE-2026-20052 Cisco OpenVuln
Cisco Firepower 2100 Series CVE-2026-20052 Cisco OpenVuln
Cisco Firepower 1000 Series CVE-2026-20052 Cisco OpenVuln
Cisco 3000 Series Industrial Security Appliances (ISA) CVE-2026-20052 Cisco OpenVuln
Cisco Firepower 9000 Series CVE-2026-20052 Cisco OpenVuln
Cisco Firepower 4100 Series CVE-2026-20052 Cisco OpenVuln
Cisco Secure Firewall 3100 Series CVE-2026-20052 Cisco OpenVuln
Cisco Secure Firewall 4200 Series CVE-2026-20052 Cisco OpenVuln
Cisco Secure Firewall 1200 Series CVE-2026-20052 Cisco OpenVuln
Cisco Secure Firewall Threat Defense Virtual CVE-2026-20052 Cisco OpenVuln
Cisco Firepower Threat Defense Software CVE-2026-20052 Cisco OpenVuln
Cisco 3000 Series Routers CVE-2026-20052 Cisco OpenVuln