Security features bypass in multiple Cisco Products
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2023-20071 |
| CWE-ID | CWE-254 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Cisco Firepower Threat Defense (FTD) Hardware solutions / Security hardware applicances FirePOWER Services Client/Desktop applications / Antivirus software/Personal firewalls Cyber Vision Client/Desktop applications / Antivirus software/Personal firewalls Umbrella Secure Internet Gateway Client/Desktop applications / Antivirus software/Personal firewalls Open Source Snort 2 Server applications / IDS/IPS systems, Firewalls and proxy servers Open Source Snort 3 Server applications / IDS/IPS systems, Firewalls and proxy servers Cisco UTD Snort IPS Engine Software for IOS XE Other software / Other software solutions Cisco UTD Engine for IOS XE SD-WAN Other software / Other software solutions Meraki MX Security Appliances Other software / Other software solutions Cisco 1000 Series Integrated Services Routers Hardware solutions / Routers & switches, VoIP, GSM, etc 4000 Series Integrated Services Routers Hardware solutions / Routers & switches, VoIP, GSM, etc Catalyst 8000V Edge Software Hardware solutions / Routers & switches, VoIP, GSM, etc Catalyst 8200 Series Edge Platforms Hardware solutions / Routers & switches, VoIP, GSM, etc Catalyst 8300 Series Edge Platforms Hardware solutions / Routers & switches, VoIP, GSM, etc Catalyst 8500L Series Edge Platforms Hardware solutions / Routers & switches, VoIP, GSM, etc Cloud Services Routers 1000V Series Hardware solutions / Routers & switches, VoIP, GSM, etc Integrated Services Virtual Router Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX64 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX64W Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX65 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX65W Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX67 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX67C Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX68 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX68WC Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX75 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX84 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX85 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX95 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX100 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX105 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX250 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX400 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX450 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX600 Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Meraki MX67W Hardware solutions / Firmware Cisco Meraki MX68W Hardware solutions / Firmware |
| Vendor | Cisco Systems, Inc |
Security Bulletin
This security bulletin contains one medium risk vulnerability.
1) Security features bypass
EUVDB-ID: #VU82708
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2023-20071
CWE-ID:
CWE-254 - Security Features
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to a flaw in the FTP module of the Snort detection engine. A remote attacker can send specially crafted FTP traffic, bypass FTP inspection and deliver a malicious payload.
MitigationInstall updates from vendor's website.
Vulnerable software versionsCisco Firepower Threat Defense (FTD): - - 7.3.0
FirePOWER Services: All versions
Open Source Snort 2: All versions
Cisco UTD Snort IPS Engine Software for IOS XE: 17.3 - 17.12
Cisco UTD Engine for IOS XE SD-WAN: 17.3 - 17.12
Cisco 1000 Series Integrated Services Routers: All versions
4000 Series Integrated Services Routers: All versions
Catalyst 8000V Edge Software: All versions
Catalyst 8200 Series Edge Platforms: All versions
Catalyst 8300 Series Edge Platforms: All versions
Catalyst 8500L Series Edge Platforms: All versions
Cloud Services Routers 1000V Series: All versions
Integrated Services Virtual Router: All versions
Meraki MX Security Appliances: MX15 - MX18
Cisco Meraki MX64: All versions
Cisco Meraki MX64W: All versions
Cisco Meraki MX65: All versions
Cisco Meraki MX65W: All versions
Cisco Meraki MX67: All versions
Cisco Meraki MX67C: All versions
Cisco Meraki MX67W: All versions
Cisco Meraki MX68: All versions
Cisco Meraki MX68W: All versions
Cisco Meraki MX68WC: All versions
Cisco Meraki MX75: All versions
Cisco Meraki MX84: All versions
Cisco Meraki MX85: All versions
Cisco Meraki MX95: All versions
Cisco Meraki MX100: All versions
Cisco Meraki MX105: All versions
Cisco Meraki MX250: All versions
Cisco Meraki MX400: All versions
Cisco Meraki MX450: All versions
Cisco Meraki MX600: All versions
Cyber Vision: 3.2.4 - 4.1
Umbrella Secure Internet Gateway: All versions
Open Source Snort 3: before 3.1.32.0
CPE2.3- cpe:2.3:h:cisco_systems:cisco_ftd:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_ftd:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_ftd:6.5.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_ftd:6.6.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_ftd:6.7.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_ftd:7.0.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_ftd:7.1.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_ftd:7.2.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_ftd:7.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:firepower_services:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:open_source_snort_2:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:cisco_utd_snort_ips_engine_software_for_ios_xe:17.3:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:cisco_utd_engine_for_ios_xe_sd-wan:17.3:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_1000_series_integrated_services_routers:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:4000_series_integrated_services_routers:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:catalyst_8000v_edge_software:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:catalyst_8200_series_edge_platforms:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:catalyst_8300_series_edge_platforms:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:catalyst_8500l_series_edge_platforms:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cloud_services_routers_1000v_series:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:integrated_services_virtual_router:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:meraki_mx_security_appliances:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx64:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx64w:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx65:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx65w:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx67:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx67c:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx67w:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx68:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx68w:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx68wc:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx75:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx84:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx85:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx95:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx100:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx105:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx250:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx400:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx450:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_meraki_mx600:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:cyber_vision:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:umbrella_secure_internet_gateway:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco_systems:open_source_snort_3:*:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
