CVE-2022-20767 An attack on the rule evaluation function of Cisco Firepower could lead to a DoS condition.

CVE-2022-20767 An attack on the rule evaluation function of Cisco Firepower could lead to a DoS condition.

Cisco FTD devices running Snort 2.9.9, 2.9.10, 2.10.0, 2.10.1, 2.10.2, or 2.10.3 are vulnerable. Cisco FirePOWER Threat Defense is an advanced network security solution that protects networks at the edge from attack with advanced machine learning powered by artificial intelligence (AI). Cisco FirePOWER Threat Defense is currently available in two form factors; appliance and software-defined. Cisco FirePOWER Threat Defense appliance is a powerful and flexible platform for protecting any type of network with a variety of sensors and advanced analytics. Cisco FirePOWER Threat Defense software-defined offers a software only solution that runs from the network edge, through the data center, and out to the edge.

Cisco FirePOWER Threat Defense Software Defined

The software-defined solution is a perfect fit for organizations that are looking to leverage resources in different ways. For instance, a branch office may want to benefit from the analytics and protection capabilities of Cisco FirePOWER Threat Defense's software only solution while the core organization relies on the appliance-based solution.
The software-defined solution has several advantages over the appliance-based product. The most significant advantage is it's flexibility; as with other Cisco solutions, it can be installed and configured centrally or distributed across a network of devices with no changes needed for each node. Another key advantage is its scalability; this model can handle any size network by simply adding nodes rather than replacing whole appliances.
Cisco FirePOWER Threat Defense software-defined offers an end-to-end solution that protects against all types of threats including advanced persistent threats (APTs) like targeted attacks, ransomware, and malicious insiders. It also provides intelligent threat protection from compromised devices, including virtual machines (VM). Finally, it includes advanced detection and response capabilities that identify malicious files before they reach a user's computer and uses whitelisting or blocking technology to prevent them from executing.
If you are using Cisco FTD devices running Snort 2.9.9 to 2.10.3 on your network please update your device immediately!

Cisco FirePOWER Threat Defense Software-Defined Solution

Cisco FirePOWER Threat Defense Software-Defined uses advanced software and machine learning to provide protection at the edge. The software continuously learns new attack methods, and can detect a broad range of cyber threats. Cisco FirePOWER Threat Defense Software-Defined delivers real-time protection on all ports, including those that are difficult to protect with other solutions. Cisco FirePOWER Threat Defense Software-Defined offers an alternative to protecting the entire network with a separate appliance or using a third party appliance with the Cisco FirePOWER solution.

Cisco FTD devices running Snort 2.9.9, 2.9.10, 2.10.0, 2.10.1, 2.10.2, or 2.10.3 are vulnerable and could allow an attacker to take full control of the device
Cisco FirePOWER Threat Defense is an advanced network security solution that protects networks at the edge from attack with advanced machine learning powered by artificial intelligence (AI).

Cisco FirePOWER Threat Defense Software -Defined

Software-defined offers a software only solution that runs from the network edge, through the data center, and out to the edge. The software-defined solution is easy to deploy and can be managed centrally. It’s also scalable by adding more collectors or analyzers as needed.
On top of all this, Cisco FirePOWER Threat Defense software-defined provides additional functionality like anomaly detection, advanced threat protection, and machine learning. These features provide capabilities for proactive defense and respond automatically to threats in real time. The flexible platform allows customers to create a unique security policy based on their requirements.
In addition, it will help you meet compliance mandates by providing perimeter containment with advanced detection and response that include DoS mitigation and web crawling capabilities.>>END>>

Cisco FirePOWER Threat Defense 2.0.0 - Software-Defined

Cisco FirePOWER Threat Defense 2.0.0 is designed for the new software-defined data center, delivering a secure and self-healing security solution that starts at the edge of the network and extends to the core. Cisco FirePOWER Threat Defense 2.0.0 offers an AI-powered security solution that can be deployed on premise or in the cloud, providing complete visibility into all threats to networks and endpoints while mitigating them automatically without human intervention.
Cisco FirePOWER Threat Defense 2.0.0 is delivered as software only with no hardware required, enabling customers to deploy it in a variety of ways including:
Deployed as a managed service on premise or in the cloud
As an appliance deployed with physical security controls
In combination with Cisco IOS XE Software as part of a virtualized data center

Cisco Firepower Threat Defense Software-Defined Device

Cisco Firepower Threat Defense Software-Defined Device (SDD) is a software-defined solution that runs at the edge of your network. Cisco SDD provides real-time protection against sophisticated cyber attacks, and it can be deployed either as a standalone appliance or in conjunction with other Cisco security solutions.

The Cisco SDD offers seamless integration with other security devices by supporting integration with Cisco's existing Security Service Engines (SSE). For example, if you are using the Cisco SDD along with an SSE, you can combine the two to provide layered defense and more insight into how your network is being used.

The Cisco SDD is designed to be easy to deploy, manage, and scale, so it will fit seamlessly into your existing infrastructure or help you upgrade or migrate existing security products onto a new platform.

References

Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe