CVE-2024-20342— Cisco Firepower Threat Defense Software Rate Filter Bypass Vulnerability

CVSS 5.8 · Medium EPSS 0.05% · P17 Updated Jan 25, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-20342

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Cisco Firepower Threat Defense Software Rate Filter Bypass Vulnerability

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple Cisco products are affected by a vulnerability in the rate filtering feature of the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured rate limiting filter.  This vulnerability is due to an incorrect connection count comparison. An attacker could exploit this vulnerability by sending traffic through an affected device at a rate that exceeds a configured rate filter. A successful exploit could allow the attacker to successfully bypass the rate filter. This could allow unintended traffic to enter the network protected by the affected device.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Source: NVD (National Vulnerability Database)

Vulnerability Type

使用错误要素进行比较

Source: NVD (National Vulnerability Database)

Vulnerability Title

Cisco Firepower Threat Defense 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Cisco Firepower Threat Defense（FTD）是美国思科（Cisco）公司的一套提供下一代防火墙服务的统一软件。 Cisco Firepower Threat Defense存在安全漏洞，该漏洞源于连接数比较不正确。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Cisco	Cisco Firepower Threat Defense Software	7.0.0	-

II. Public POCs for CVE-2024-20342

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2024-20342

请登录查看更多情报信息。

Same Patch Batch · Cisco · 2024-10-23 · 52 CVEs total

CVE-2024-20329	9.9 CRITICAL	Cisco Adaptive Security Appliance Software Remote Command Injection Vulnerability
CVE-2024-20424	9.9 CRITICAL	Cisco Secure Firewall Management Center 安全漏洞
CVE-2024-20412	9.3 CRITICAL	Cisco Firepower Threat Defense 安全漏洞
CVE-2024-20351	8.6 HIGH	Cisco Firepower Threat Defense Software Snort Firewall Denial of Service Vulnerability
CVE-2024-20339	8.6 HIGH	Cisco Firepower Threat Defense Software for Firepower 2100 Series TLS Denial of Service Vu
CVE-2024-20402	8.6 HIGH	Cisco Firepower Threat Defense和Cisco Adaptive Security Appliance 安全漏洞
CVE-2024-20330	8.6 HIGH	Cisco Firepower Threat Defense Software for Cisco Firepower 2100 Series TCP UDP Snort 2 an
CVE-2024-20426	8.6 HIGH	Cisco Firepower Threat Defense和Cisco Adaptive Security Appliance 安全漏洞
CVE-2024-20495	8.6 HIGH	Cisco Firepower Threat Defense和Cisco Adaptive Security Appliance 安全漏洞
CVE-2024-20494	8.6 HIGH	Cisco Firepower Threat Defense和Cisco Adaptive Security Appliance 安全漏洞
CVE-2024-20260	8.6 HIGH	Cisco Adaptive Security Virtual Appliance and Secure Firewall Threat Defense Virtual SSL V
CVE-2024-20408	7.7 HIGH	Cisco Firepower Threat Defense和Cisco Adaptive Security Appliance 安全漏洞
CVE-2024-20268	7.7 HIGH	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software SNMP Deni
CVE-2024-20275	6.8 MEDIUM	Cisco Secure Firewall Management Center Software Backup Cluster Command Injection Vulnerab
CVE-2024-20331	6.8 MEDIUM	Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Authentication
CVE-2024-20482	6.5 MEDIUM	Cisco Secure Firewall Management Center 安全漏洞
CVE-2024-20340	6.5 MEDIUM	Cisco Secure Firewall Management Center 安全漏洞
CVE-2024-20379	6.5 MEDIUM	Cisco Secure Firewall Management Center 安全漏洞
CVE-2024-20374	6.5 MEDIUM	Cisco Secure Firewall Management Center 安全漏洞
CVE-2024-20471	6.5 MEDIUM	Cisco Secure Firewall Management Center 安全漏洞

Showing top 20 of 52 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Cisco Firepower Threat Defense Software

Same vendor: Cisco

Same weakness: CWE-1025

V. Comments for CVE-2024-20342

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2024-20342— Cisco Firepower Threat Defense Software Rate Filter Bypass Vulnerability

I. Basic Information for CVE-2024-20342

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2024-20342

III. Intelligence Information for CVE-2024-20342

Same Patch Batch · Cisco · 2024-10-23 · 52 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2024-20342

Leave a comment