{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-20058", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2025-10-08T11:59:15.356Z", "datePublished": "2026-03-04T17:47:14.841Z", "dateUpdated": "2026-03-04T21:01:36.320Z"}, "containers": {"cna": {"title": "Cisco Secure Firewall Threat Defense Software Snort 3 Visual Basic for Application Denial of Service Vulnerability", "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L", "baseScore": 5.8, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW"}}], "descriptions": [{"lang": "en", "value": "Multiple Cisco products are affected by vulnerabilities in the Snort 3 VBA feature that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash.\r\n\r\nThese vulnerabilities are due to improper error checking when decompressing VBA data. An attacker could exploit these vulnerabilities by sending crafted VBA data to the Snort 3 Detection Engine on the targeted device. A successful exploit could allow the attacker to cause the Snort 3 Detection Engine to unexpectedly restart, causing a DoS condition."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3-vbavuls-96UcVVed", "name": "cisco-sa-ftd-snort3-vbavuls-96UcVVed"}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."}], "source": {"advisory": "cisco-sa-ftd-snort3-vbavuls-96UcVVed", "discovery": "INTERNAL", "defects": ["CSCwq23369"]}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "Access of Memory Location Before Start of Buffer", "type": "cwe", "cweId": "CWE-786"}]}], "affected": [{"vendor": "Cisco", "product": "Cisco Secure Firewall Threat Defense (FTD) Software", "versions": [{"version": "7.2.0", "status": "affected"}, {"version": "7.2.0.1", "status": "affected"}, {"version": "7.2.1", "status": "affected"}, {"version": "7.3.0", "status": "affected"}, {"version": "7.2.2", "status": "affected"}, {"version": "7.2.3", "status": "affected"}, {"version": "7.3.1", "status": "affected"}, {"version": "7.2.4", "status": "affected"}, {"version": "7.2.5", "status": "affected"}, {"version": "7.2.4.1", "status": "affected"}, {"version": "7.3.1.1", "status": "affected"}, {"version": "7.4.0", "status": "affected"}, {"version": "7.2.5.1", "status": "affected"}, {"version": "7.4.1", "status": "affected"}, {"version": "7.2.6", "status": "affected"}, {"version": "7.4.1.1", "status": "affected"}, {"version": "7.2.7", "status": "affected"}, {"version": "7.2.5.2", "status": "affected"}, {"version": "7.3.1.2", "status": "affected"}, {"version": "7.2.8", "status": "affected"}, {"version": "7.6.0", "status": "affected"}, {"version": "7.4.2", "status": "affected"}, {"version": "7.2.8.1", "status": "affected"}, {"version": "7.4.2.1", "status": "affected"}, {"version": "7.2.9", "status": "affected"}, {"version": "7.7.0", "status": "affected"}, {"version": "7.4.2.2", "status": "affected"}, {"version": "7.2.10", "status": "affected"}, {"version": "7.6.1", "status": "affected"}, {"version": "7.4.2.3", "status": "affected"}, {"version": "7.6.2", "status": "affected"}, {"version": "7.7.10", "status": "affected"}, {"version": "7.6.2.1", "status": "affected"}, {"version": "7.7.10.1", "status": "affected"}, {"version": "7.4.2.4", "status": "affected"}, {"version": "7.2.10.2", "status": "affected"}, {"version": "7.4.3", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Cisco", "product": "Cisco UTD SNORT IPS Engine Software", "versions": [{"version": "17.9.3a", "status": "affected"}, {"version": "17.12.1a", "status": "affected"}, {"version": "17.12.2", "status": "affected"}, {"version": "17.13.1a", "status": "affected"}, {"version": "17.9.5a", "status": "affected"}, {"version": "17.12.3", "status": "affected"}, {"version": "17.14.1a", "status": "affected"}, {"version": "17.12.4", "status": "affected"}, {"version": "17.12.3a", "status": "affected"}, {"version": "17.15.1a", "status": "affected"}, {"version": "17.9.6", "status": "affected"}, {"version": "17.16.1a", "status": "affected"}, {"version": "17.12.4a", "status": "affected"}, {"version": "17.15.2c", "status": "affected"}, {"version": "17.12.4b", "status": "affected"}, {"version": "17.15.2a", "status": "affected"}, {"version": "17.12.5", "status": "affected"}, {"version": "17.17.1", "status": "affected"}, {"version": "17.12.5a", "status": "affected"}, {"version": "17.15.3a", "status": "affected"}, {"version": "17.15.3", "status": "affected"}, {"version": "17.12.5b", "status": "affected"}, {"version": "17.12.5c", "status": "affected"}, {"version": "17.15.4", "status": "affected"}, {"version": "17.18.1", "status": "affected"}, {"version": "17.18.1a", "status": "affected"}, {"version": "17.12.6", "status": "affected"}, {"version": "17.15.4c", "status": "affected"}, {"version": "17.12.5d", "status": "affected"}, {"version": "17.18.2", "status": "affected"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2026-03-04T17:47:14.841Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-04T21:01:22.100265Z", "id": "CVE-2026-20058", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-04T21:01:36.320Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-20058", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-04T21:01:22.100265Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-04T21:01:31.281Z"}}], "cna": {"title": "Cisco Secure Firewall Threat Defense Software Snort 3 Visual Basic for Application Denial of Service Vulnerability", "source": {"defects": ["CSCwq23369"], "advisory": "cisco-sa-ftd-snort3-vbavuls-96UcVVed", "discovery": "INTERNAL"}, "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "Cisco", "product": "Cisco Secure Firewall Threat Defense (FTD) Software", "versions": [{"status": "affected", "version": "7.2.0"}, {"status": "affected", "version": "7.2.0.1"}, {"status": "affected", "version": "7.2.1"}, {"status": "affected", "version": "7.3.0"}, {"status": "affected", "version": "7.2.2"}, {"status": "affected", "version": "7.2.3"}, {"status": "affected", "version": "7.3.1"}, {"status": "affected", "version": "7.2.4"}, {"status": "affected", "version": "7.2.5"}, {"status": "affected", "version": "7.2.4.1"}, {"status": "affected", "version": "7.3.1.1"}, {"status": "affected", "version": "7.4.0"}, {"status": "affected", "version": "7.2.5.1"}, {"status": "affected", "version": "7.4.1"}, {"status": "affected", "version": "7.2.6"}, {"status": "affected", "version": "7.4.1.1"}, {"status": "affected", "version": "7.2.7"}, {"status": "affected", "version": "7.2.5.2"}, {"status": "affected", "version": "7.3.1.2"}, {"status": "affected", "version": "7.2.8"}, {"status": "affected", "version": "7.6.0"}, {"status": "affected", "version": "7.4.2"}, {"status": "affected", "version": "7.2.8.1"}, {"status": "affected", "version": "7.4.2.1"}, {"status": "affected", "version": "7.2.9"}, {"status": "affected", "version": "7.7.0"}, {"status": "affected", "version": "7.4.2.2"}, {"status": "affected", "version": "7.2.10"}, {"status": "affected", "version": "7.6.1"}, {"status": "affected", "version": "7.4.2.3"}, {"status": "affected", "version": "7.6.2"}, {"status": "affected", "version": "7.7.10"}, {"status": "affected", "version": "7.6.2.1"}, {"status": "affected", "version": "7.7.10.1"}, {"status": "affected", "version": "7.4.2.4"}, {"status": "affected", "version": "7.2.10.2"}, {"status": "affected", "version": "7.4.3"}], "defaultStatus": "unknown"}, {"vendor": "Cisco", "product": "Cisco UTD SNORT IPS Engine Software", "versions": [{"status": "affected", "version": "17.9.3a"}, {"status": "affected", "version": "17.12.1a"}, {"status": "affected", "version": "17.12.2"}, {"status": "affected", "version": "17.13.1a"}, {"status": "affected", "version": "17.9.5a"}, {"status": "affected", "version": "17.12.3"}, {"status": "affected", "version": "17.14.1a"}, {"status": "affected", "version": "17.12.4"}, {"status": "affected", "version": "17.12.3a"}, {"status": "affected", "version": "17.15.1a"}, {"status": "affected", "version": "17.9.6"}, {"status": "affected", "version": "17.16.1a"}, {"status": "affected", "version": "17.12.4a"}, {"status": "affected", "version": "17.15.2c"}, {"status": "affected", "version": "17.12.4b"}, {"status": "affected", "version": "17.15.2a"}, {"status": "affected", "version": "17.12.5"}, {"status": "affected", "version": "17.17.1"}, {"status": "affected", "version": "17.12.5a"}, {"status": "affected", "version": "17.15.3a"}, {"status": "affected", "version": "17.15.3"}, {"status": "affected", "version": "17.12.5b"}, {"status": "affected", "version": "17.12.5c"}, {"status": "affected", "version": "17.15.4"}, {"status": "affected", "version": "17.18.1"}, {"status": "affected", "version": "17.18.1a"}, {"status": "affected", "version": "17.12.6"}, {"status": "affected", "version": "17.15.4c"}, {"status": "affected", "version": "17.12.5d"}, {"status": "affected", "version": "17.18.2"}], "defaultStatus": "unknown"}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3-vbavuls-96UcVVed", "name": "cisco-sa-ftd-snort3-vbavuls-96UcVVed"}], "descriptions": [{"lang": "en", "value": "Multiple Cisco products are affected by vulnerabilities in the Snort 3 VBA feature that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash.\r\n\r\nThese vulnerabilities are due to improper error checking when decompressing VBA data. An attacker could exploit these vulnerabilities by sending crafted VBA data to the Snort 3 Detection Engine on the targeted device. A successful exploit could allow the attacker to cause the Snort 3 Detection Engine to unexpectedly restart, causing a DoS condition."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-786", "description": "Access of Memory Location Before Start of Buffer"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2026-03-04T17:47:14.841Z"}}}, "cveMetadata": {"cveId": "CVE-2026-20058", "state": "PUBLISHED", "dateUpdated": "2026-03-04T21:01:36.320Z", "dateReserved": "2025-10-08T11:59:15.356Z", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2026-03-04T17:47:14.841Z", "assignerShortName": "cisco"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple Cisco products are affected by vulnerabilities in the Snort 3 VBA feature that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash.\r\n\r\nThese vulnerabilities are due to improper error checking when decompressing VBA data. An attacker could exploit these vulnerabilities by sending crafted VBA data to the Snort 3 Detection Engine on the targeted device. A successful exploit could allow the attacker to cause the Snort 3 Detection Engine to unexpectedly restart, causing a DoS condition."}], "id": "CVE-2026-20058", "lastModified": "2026-03-05T19:39:11.967", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "psirt@cisco.com", "type": "Primary"}]}, "published": "2026-03-04T18:16:20.643", "references": [{"source": "psirt@cisco.com", "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3-vbavuls-96UcVVed"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-786"}], "source": "psirt@cisco.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.9.3a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.12.1a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.12.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.13.1a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.9.5a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.12.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.14.1a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.12.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.12.3a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.15.1a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.9.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.16.1a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.12.4a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.15.2c"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.12.4b"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.15.2a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.12.5"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.17.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.12.5a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.15.3a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.15.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.12.5b"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.12.5c"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.15.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.18.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.18.1a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.12.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.15.4c"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "17.12.5d"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.18.2"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Cisco UTD SNORT IPS Engine Software", "source": "cna", "vendor": "Cisco"}, "product": "cisco_utd_snort_ips_engine_software", "vendor": "cisco"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.2.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.2.0.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.2.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.3.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.2.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.2.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.3.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.2.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.2.5"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.2.4.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.3.1.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.4.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.2.5.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.4.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.2.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.4.1.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.2.7"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.2.5.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.3.1.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.2.8"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.6.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.4.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.2.8.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.4.2.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.2.9"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.7.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.4.2.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.2.10"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.6.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.4.2.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.6.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.7.10"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.6.2.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.7.10.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.4.2.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.2.10.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.4.3"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Cisco Secure Firewall Threat Defense (FTD) Software", "source": "cna", "vendor": "Cisco"}, "product": "secure_firewall_threat_defense", "vendor": "cisco"}], "analysis": {"en": {"generated_at": "2026-04-17T13:05:48.088001+00:00", "value": {"mitigation_remediation": ["Apply Cisco\u2019s latest firmware or software patch that addresses the Snort\u202f3 VBA decompression flaw as detailed in the Cisco advisory.", "If a patch is not yet available, restrict traffic that may contain VBA payloads to the Snort\u202f3 interface or disable the VBA feature through the device configuration, then isolate the service with ACLs.", "Monitor system logs for repeated Snort\u202f3 engine restarts and verify the appliance\u2019s health; report anomalies to Cisco support."], "summary": {"action": "Apply Patch", "impact": "Denial of Service"}, "threat_synthesis": {"affected_systems": "Cisco Secure Firewall Threat Defense Software (FTD) and Cisco UTD SNORT IPS Engine Software are vulnerable. No specific firmware or software version ranges are listed in the advisory; administrators should check for updates on affected deployments.", "description_and_impact": "The vulnerability stems from improper error handling when decompressing VBA data in Snort\u202f3. An attacker can send specially crafted VBA data to the Snort\u202f3 Detection Engine, which will process the data without adequate bounds checking, leading to a crash. The crash causes the Snort\u202f3 engine to restart, resulting in a denial\u2011of\u2011service to the firewall\u2019s intrusion detection capabilities. The flaw is classified as CWE\u2011786 and allows only a denial of service, with no privilege escalation.", "risk_and_exploitability": "The CVSS score of 5.8 indicates moderate severity. EPSS shows a likelihood of exploitation of less than 1\u202f%, and the vulnerability is not listed in the CISA KEV catalog. Based on the description, it is inferred that an unauthenticated remote attacker can exploit it by sending a crafted VBA payload over a network path that reaches the Snort\u202f3 engine, typically through the firewall\u2019s management or data plane. Successful exploitation results in a restart of the detection engine, interrupting packet inspection for the affected device. The condition does not require authenticated access or privileged execution, but requires the ability to reach the Snort\u202f3 service."}}}}, "created": "2026-03-05T09:06:16.396294+00:00", "updated": "2026-04-17T13:15:19.659917+00:00", "vendors": ["cisco", "cisco$PRODUCT$cisco_utd_snort_ips_engine_software", "cisco$PRODUCT$secure_firewall_threat_defense"]}