Cisco FTD ENIP Packet Inspection Bypass Vulnerability
CVE-2021-34753 Published on November 15, 2024

Cisco Firepower Threat Defense Ethernet Industrial Protocol Policy Bypass Vulnerabilities
A vulnerability in the payload inspection for Ethernet Industrial Protocol (ENIP) traffic for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured rules for ENIP traffic. This vulnerability is due to incomplete processing during deep packet inspection for ENIP packets. An attacker could exploit this vulnerability by sending a crafted ENIP packet to the targeted interface. A successful exploit could allow the attacker to bypass configured access control and intrusion policies that should trigger and drop for the ENIP packet.

NVD

Vulnerability Analysis

CVE-2021-34753 can be exploited with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, with no impact on integrity, and no impact on availability.

Attack Vector:
NETWORK
Attack Complexity:
LOW
Privileges Required:
NONE
User Interaction:
NONE
Scope:
CHANGED
Confidentiality Impact:
NONE
Integrity Impact:
LOW
Availability Impact:
NONE

Weakness Type

What is an Authorization Vulnerability?

The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVE-2021-34753 has been classified to as an Authorization vulnerability or weakness.


Products Associated with CVE-2021-34753

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-34753 are published in these products:

Cisco Firepower Threat Defense Software
 
Cisco Firepower Threat Defense
 

Affected Versions

Cisco Firepower Threat Defense Software: cisco firepower_threat_defense_software:

Exploit Probability

EPSS
0.05%
Percentile
13.99%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.