How severe is CVE-2017-3887?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.9 out of 10.

What type of vulnerability is CVE-2017-3887?

This is classified as CWE-755, which is a common weakness in software security.

CVE-2017-3887 - MEDIUM Severity | CVSS 5.9

Vulnerability Description

A vulnerability in the detection engine that handles Secure Sockets Layer (SSL) packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition because the Snort process unexpectedly restarts. This vulnerability affects Cisco Firepower System Software prior to the first fixed release when it is configured with an SSL Decrypt-Resign policy. More Information: CSCvb62292. Known Affected Releases: 6.0.1 6.1.0 6.2.0. Known Fixed Releases: 6.2.0 6.1.0.2.

Related Vulnerabilities

CVE-2013-4584

MEDIUM

CVSS:5.9(Medium)

Perdition before 2.2 may have weak security when handling outbound connections, caused by an error in the STARTTLS IMAP and POP server. ssl_outgoing_ciphers not being applied to STARTTLS connections

CWE-7552013

CVE-2020-12105

MEDIUM

CVSS:5.9(Medium)

OpenConnect through 8.08 mishandles negative return values from X509_check_ function calls, which might assist attackers in performing man-in-the-middle attacks.

CWE-7552020

CVE-2022-0023

MEDIUM

CVSS:5.9(Medium)

An improper handling of exceptional conditions vulnerability exists in the DNS proxy feature of Palo Alto Networks PAN-OS software that enables a meddler-in-the-middle (MITM) to send specifically craf...

CWE-7552022

CVE-2023-41317

MEDIUM

CVSS:5.9(Medium)

The Apollo Router is a configurable, high-performance graph router written in Rust to run a federated supergraph that uses Apollo Federation 2. Affected versions are subject to a Denial-of-Service (Do...

CWE-7552023

CVE-2023-50019

MEDIUM

CVSS:5.9(Medium)

An issue was discovered in open5gs v2.6.6. InitialUEMessage, Registration request sent at a specific time can crash AMF due to incorrect error handling of Nudm_UECM_Registration response.

CWE-7552023

CVE-2024-21585

MEDIUM

CVSS:5.9(Medium)

An Improper Handling of Exceptional Conditions vulnerability in BGP session processing of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker, using specifi...

CWE-7552024