How severe is CVE-2017-3885?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.9 out of 10.

What type of vulnerability is CVE-2017-3885?

This is classified as CWE-400, which is a common weakness in software security.

CVE-2017-3885

MEDIUM Year: 2017

CVSS v3 Score

5.9

Medium

CVSS v2 Score

7.1

High

Weakness Type

CWE-400

View all →

Vulnerability Description

A vulnerability in the detection engine reassembly of Secure Sockets Layer (SSL) packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition because the Snort process consumes a high level of CPU resources. Affected Products: This vulnerability affects Cisco Firepower System Software running software releases 6.0.0, 6.1.0, 6.2.0, or 6.2.1 when the device is configured with an SSL policy that has at least one rule specifying traffic decryption. More Information: CSCvc58563. Known Affected Releases: 6.0.0 6.1.0 6.2.0 6.2.1.

CVE-2013-7470

MEDIUM

CVSS:5.9(Medium)

cipso_v4_validate in include/net/cipso_ipv4.h in the Linux kernel before 3.11.7, when CONFIG_NETLABEL is disabled, allows attackers to cause a denial of service (infinite loop and crash), as demonstra...

CWE-4002013

CVE-2016-10544

MEDIUM

CVSS:5.9(Medium)

uws is a WebSocket server library. By sending a 256mb websocket message to a uws server instance with permessage-deflate enabled, there is a possibility used compression will shrink said 256mb down to...

CWE-4002016

CVE-2016-6307

MEDIUM

CVSS:5.9(Medium)

The state-machine implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking for an excessive length, which might allow remote attackers to cause a denial of service (memory consum...

CWE-4002016

CVE-2017-15130

MEDIUM

CVSS:5.9(Medium)

A denial of service flaw was found in dovecot before 2.2.34. An attacker able to generate random SNI server names could exploit TLS SNI configuration lookups, leading to excessive memory usage and the...

CWE-4002017

CVE-2017-16025

MEDIUM

CVSS:5.9(Medium)

Nes is a websocket extension library for hapi. Hapi is a webserver framework. Versions below and including 6.4.0 have a denial of service vulnerability via an invalid Cookie header. This is only prese...

CWE-4002017

CVE-2017-3140

MEDIUM

CVSS:5.9(Medium)

If named is configured to use Response Policy Zones (RPZ) an error processing some rule types can lead to a condition where BIND will endlessly loop while handling a query. Affects BIND 9.9.10, 9.10.5...

CWE-4002017

CVE-2017-3885

Vulnerability Description

Related Vulnerabilities

CVE-2013-7470

CVE-2016-10544

CVE-2016-6307

CVE-2017-15130

CVE-2017-16025

CVE-2017-3140