BDU:2026-01756

Vulnerability from fstec - Published: 07.01.2026
VLAI Severity ?
Title
Уязвимость механизма обнаружения Snort программного межсетевого экрана Cisco Secure Firewall Threat Defense (FTD), позволяющая нарушителю получить несанкционированный доступ к конфиденциальной информации
Description
Уязвимость механизма обнаружения Snort программного межсетевого экрана Cisco Secure Firewall Threat Defense (FTD) связана с раскрытием информации. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, получить несанкционированный доступ к конфиденциальной информации
Severity ?
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vendor
Cisco Systems Inc.
Software Name
Snort, Cisco Secure Firewall Threat Defense (FTD)
Software Version
3 (Snort), 7.0.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.0.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.1.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.2.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.4 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.5 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.6 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.6.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.6.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.6.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.7 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.8 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.8.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.1.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.1.0.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.1.0.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.1.0.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.0.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.4 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.4.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.5 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.5.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.6 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.7 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.5.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.8 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.8.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.9 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.10 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.10.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.3.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.3.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.3.1.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.3.1.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.1.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.2.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.2.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.2.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.2.4 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.6.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.6.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.6.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.6.2.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.7.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.7.10 (Cisco Secure Firewall Threat Defense (FTD)), 7.7.10.1 (Cisco Secure Firewall Threat Defense (FTD))
Possible Mitigations
Использование рекомендаций производителя: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-dcerpc-vulns-J9HNF4tH
Reference
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-dcerpc-vulns-J9HNF4tH
CWE
CWE-200
To clipboard 

{
  "CVSS 2.0": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
  "CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Cisco Systems Inc.",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "3 (Snort), 7.0.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.0.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.1.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.2.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.4 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.5 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.6 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.6.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.6.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.6.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.7 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.8 (Cisco Secure Firewall Threat Defense (FTD)), 7.0.8.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.1.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.1.0.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.1.0.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.1.0.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.0.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.4 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.4.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.5 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.5.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.6 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.7 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.5.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.8 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.8.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.9 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.10 (Cisco Secure Firewall Threat Defense (FTD)), 7.2.10.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.3.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.3.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.3.1.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.3.1.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.1.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.2.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.2.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.2.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.2.4 (Cisco Secure Firewall Threat Defense (FTD)), 7.4.3 (Cisco Secure Firewall Threat Defense (FTD)), 7.6.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.6.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.6.2 (Cisco Secure Firewall Threat Defense (FTD)), 7.6.2.1 (Cisco Secure Firewall Threat Defense (FTD)), 7.7.0 (Cisco Secure Firewall Threat Defense (FTD)), 7.7.10 (Cisco Secure Firewall Threat Defense (FTD)), 7.7.10.1 (Cisco Secure Firewall Threat Defense (FTD))",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-dcerpc-vulns-J9HNF4tH",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "07.01.2026",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "13.02.2026",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "13.02.2026",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2026-01756",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2026-20027, CISCO-SA-snort3-dcerpc-vulns-J9HNF4tH, ZDI-26-045, ZDI-CAN-27893",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Snort, Cisco Secure Firewall Threat Defense (FTD)",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f Snort \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u044d\u043a\u0440\u0430\u043d\u0430 Cisco Secure Firewall Threat Defense (FTD), \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0420\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u0435 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 (CWE-200)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f Snort \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u044d\u043a\u0440\u0430\u043d\u0430 Cisco Secure Firewall Threat Defense (FTD) \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u0435\u043c \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0441\u0431\u043e\u0440 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-dcerpc-vulns-J9HNF4tH",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e \u0437\u0430\u0449\u0438\u0442\u044b, \u0421\u0440\u0435\u0434\u0441\u0442\u0432\u043e \u0437\u0430\u0449\u0438\u0442\u044b",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-200",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,3)"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.