CVE-2023-20006 (CNNVD-202306-604)
中文标题:
多款Cisco产品 安全漏洞
英文标题:
A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive Security ...
漏洞描述
中文描述:
Cisco Firepower Threat Defense(FTD)是美国思科(Cisco)公司的一套提供下一代防火墙服务的统一软件。 Cisco Adaptive Security Appliance Software和Firepower Threat Defense Software存在安全漏洞,该漏洞源于基于硬件的SSL/TLS加密功能存在漏洞。受影响的产品和版本:Adaptive Security Appliance Software 9.16.4版本,9.18.2版本,9.18.2.5版本;Firepower Threat Defense Software 7.2.1版本,7.2.2版本,7.2.3版本。
英文描述:
A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Appliances could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to an implementation error within the cryptographic functions for SSL/TLS traffic processing when they are offloaded to the hardware. An attacker could exploit this vulnerability by sending a crafted stream of SSL/TLS traffic to an affected device. A successful exploit could allow the attacker to cause an unexpected error in the hardware-based cryptography engine, which could cause the device to reload.
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| Cisco | Cisco Adaptive Security Appliance (ASA) Software | 9.16.4 | - | - |
cpe:2.3:a:cisco:cisco_adaptive_security_appliance_(asa)_software:9.16.4:*:*:*:*:*:*:*
|
| Cisco | Cisco Adaptive Security Appliance (ASA) Software | 9.18.2 | - | - |
cpe:2.3:a:cisco:cisco_adaptive_security_appliance_(asa)_software:9.18.2:*:*:*:*:*:*:*
|
| Cisco | Cisco Adaptive Security Appliance (ASA) Software | 9.18.2.5 | - | - |
cpe:2.3:a:cisco:cisco_adaptive_security_appliance_(asa)_software:9.18.2.5:*:*:*:*:*:*:*
|
| Cisco | Cisco Firepower Threat Defense Software | 7.2.1 | - | - |
cpe:2.3:a:cisco:cisco_firepower_threat_defense_software:7.2.1:*:*:*:*:*:*:*
|
| Cisco | Cisco Firepower Threat Defense Software | 7.2.2 | - | - |
cpe:2.3:a:cisco:cisco_firepower_threat_defense_software:7.2.2:*:*:*:*:*:*:*
|
| Cisco | Cisco Firepower Threat Defense Software | 7.2.3 | - | - |
cpe:2.3:a:cisco:cisco_firepower_threat_defense_software:7.2.3:*:*:*:*:*:*:*
|
| cisco | firepower_threat_defense | 7.2.1 | - | - |
cpe:2.3:a:cisco:firepower_threat_defense:7.2.1:*:*:*:*:*:*:*
|
| cisco | firepower_threat_defense | 7.2.2 | - | - |
cpe:2.3:a:cisco:firepower_threat_defense:7.2.2:*:*:*:*:*:*:*
|
| cisco | firepower_threat_defense | 7.2.3 | - | - |
cpe:2.3:a:cisco:firepower_threat_defense:7.2.3:*:*:*:*:*:*:*
|
| cisco | adaptive_security_appliance_software | 9.16.4 | - | - |
cpe:2.3:o:cisco:adaptive_security_appliance_software:9.16.4:*:*:*:*:*:*:*
|
| cisco | adaptive_security_appliance_software | 9.18.2 | - | - |
cpe:2.3:o:cisco:adaptive_security_appliance_software:9.18.2:*:*:*:*:*:*:*
|
| cisco | adaptive_security_appliance_software | 9.18.2.5 | - | - |
cpe:2.3:o:cisco:adaptive_security_appliance_software:9.18.2.5:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
参考链接
cve.org
CVSS评分详情
3.1 (cna)
HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2023-20006 |
2025-11-11 15:21:47 | 2025-11-11 07:38:02 |
| NVD | nvd_CVE-2023-20006 |
2025-11-11 14:59:04 | 2025-11-11 07:46:11 |
| CNNVD | cnnvd_CNNVD-202306-604 |
2025-11-11 15:11:13 | 2025-11-11 07:58:03 |
版本与语言
安全公告
变更历史
查看详细变更
- vulnerability_type: 未提取 -> 其他
- cnnvd_id: 未提取 -> CNNVD-202306-604
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
查看详细变更
- affected_products_count: 6 -> 12
- data_sources: ['cve'] -> ['cve', 'nvd']