CVE-2021-34781
HIGHCisco Firepower Management Center Vir... - Improper Exception Handling
Title source: ruleDescription
A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. This vulnerability is due to a lack of proper error handling when an SSH session fails to be established. An attacker could exploit this vulnerability by sending a high rate of crafted SSH connections to the instance. A successful exploit could allow the attacker to cause resource exhaustion, which causes a DoS condition on the affected device. The device must be manually reloaded to recover.
Scores
CVSS v3
8.6
EPSS
0.0043
EPSS Percentile
62.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Classification
CWE
CWE-119
CWE-755
Status
published
Affected Products (17)
cisco/firepower_management_center_virtual_appliance
cisco/firepower_management_center_virtual_appliance
cisco/firepower_management_center_virtual_appliance
cisco/firepower_management_center_virtual_appliance
cisco/firepower_management_center_virtual_appliance
cisco/firepower_management_center_virtual_appliance
cisco/firepower_management_center_virtual_appliance
cisco/firepower_management_center_virtual_appliance
cisco/firepower_threat_defense
< 6.4.0.13
cisco/sourcefire_defense_center
cisco/sourcefire_defense_center
cisco/sourcefire_defense_center
cisco/sourcefire_defense_center
cisco/sourcefire_defense_center
cisco/sourcefire_defense_center
... and 2 more
Timeline
Published
Oct 27, 2021
Tracked Since
Feb 18, 2026