A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an unauthenticated, remote attacker to bypass a configured Secure Sockets Layer (SSL) Access Control (AC) policy to block SSL traffic. The vulnerability is due to the incorrect handling of TCP SSL packets received out of order. An attacker could exploit this vulnerability by sending a crafted SSL connection through the affected device. A successful exploit could allow the attacker to bypass a configured SSL AC policy to block SSL traffic. Cisco Bug IDs: CSCvg09316.
Metrics
Affected Vendors & Products
References
History
Fri, 29 Nov 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2018-05-17T03:00:00
Updated: 2024-11-29T15:08:58.703Z
Reserved: 2017-11-27T00:00:00
Link: CVE-2018-0297
Vulnrichment
Updated: 2024-08-05T03:21:15.256Z
NVD
Status : Modified
Published: 2018-05-17T03:29:00.667
Modified: 2024-11-21T03:37:55.373
Link: CVE-2018-0297
Redhat
No data.