CVE-2022-20854

A vulnerability in the processing of SSH connections of Cisco Firepower Management Center (FMC) and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper error handling when an SSH session fails to be established. An attacker could exploit this vulnerability by sending a high rate of crafted SSH connections to the instance. A successful exploit could allow the attacker to cause resource exhaustion, resulting in a reboot on the affected device.

Severity	HIGH
CVSS	7.5
CWE	CWE-400
KEV
Published	3 years ago
Modified	1 year ago

Related Products

Product	Advisory
Cisco Secure Firewall Threat Defense Virtual	cisco-sa-fmc-dos-OwEunWJN
Cisco Secure Firewall Threat Defense (FTD) Software	cisco-sa-fmc-dos-OwEunWJN
Cisco Secure Firewall Management Center (FMC) Appliances	cisco-sa-fmc-dos-OwEunWJN
Cisco Secure Firewall Management Center (FMC)	cisco-sa-fmc-dos-OwEunWJN
Cisco Firepower Management Center	cisco-sa-fmc-dos-OwEunWJN
Cisco Firepower 9000 Series	cisco-sa-fmc-dos-OwEunWJN
Cisco Firepower 4100 Series	cisco-sa-fmc-dos-OwEunWJN
Cisco Firepower 2100 Series	cisco-sa-fmc-dos-OwEunWJN
Cisco Firepower 1000 Series	cisco-sa-fmc-dos-OwEunWJN
Cisco ASA 5500-X Series Firewalls	cisco-sa-fmc-dos-OwEunWJN
Cisco 3000 Series Industrial Security Appliances (ISA)	cisco-sa-fmc-dos-OwEunWJN