ByteOS Network

CVE Vulnerability Details :

CVE-2026-20054

PUBLISHED

More Info Official Page

Assigner-cisco

Assigner Org ID-d1c1063e-7a18-46af-9102-31f8928bc633

Published At-04 Mar, 2026 | 17:47

Updated At-04 Mar, 2026 | 21:30

▼CVE Numbering Authority (CNA)

Cisco Secure Firewall Threat Defense Software Snort 3 Visual Basic for Application Infinite Loop Denial of Service Vulnerability

Multiple Cisco products are affected by a vulnerability in the Snort 3 VBA feature that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash.  This vulnerability is due to improper error checking when decompressing VBA data. An attacker could exploit this vulnerability by sending crafted VBA data to the Snort 3 Detection Engine on the targeted device. A successful exploit could allow the attacker to cause the Snort 3 Detection Engine to enter an infinite loop, causing a DoS condition.

Affected Products

Vendor

Cisco Systems, Inc.

Product

Cisco Cyber Vision

Default Status

unknown

Versions

Affected

3.0.0
3.0.2
3.0.3
3.0.1
3.1.0
3.0.4
3.1.1
3.1.2
3.2.0
3.0.5
3.2.1
3.0.6
3.2.2
3.2.3
3.2.4
4.0.0
4.0.1
4.0.2
4.0.3
4.1.0
4.1.1
4.1.2
4.1.3
4.1.4
4.2.0
4.2.1
4.1.5
4.2.2
4.2.X
4.2.3
4.2.4
4.2.6
4.1.6
4.3.0
4.3.1
4.3.2
4.3.3
4.4.0
4.4.1
4.4.2
4.4.3
4.1.7
5.0.0
5.0.1
5.0.2
5.1.0
5.1.1
5.1.2
5.1.3
5.2.0
5.2.1
5.3.0
5.3.1
5.3.2

Vendor

Cisco Systems, Inc.

Product

Cisco Secure Firewall Threat Defense (FTD) Software

Default Status

unknown

Versions

Affected

7.2.0
7.2.0.1
7.2.1
7.3.0
7.2.2
7.2.3
7.3.1
7.2.4
7.2.5
7.2.4.1
7.3.1.1
7.4.0
7.2.5.1
7.4.1
7.2.6
7.4.1.1
7.2.7
7.2.5.2
7.3.1.2
7.2.8
7.6.0
7.4.2
7.2.8.1
7.4.2.1
7.2.9
7.7.0
7.4.2.2
7.2.10
7.6.1
7.4.2.3
7.6.2
7.7.10
7.6.2.1
7.7.10.1
7.4.2.4
7.2.10.2
7.4.3

Vendor

Cisco Systems, Inc.

Product

Cisco UTD SNORT IPS Engine Software

Default Status

unknown

Versions

Affected

3.17.1S
16.12.3
Fuji-16.9.5
16.12.4
17.3.1a
16.6.6
16.12.2
Fuji-16.9.6
3.17.0S
Fuji-16.9.3
Denali-16.3.7
Fuji-16.9.2
Fuji-16.9.4
Everest-16.6.4
Everest-16.6.3
16.6.5
Denali-16.3.5
17.2.1r
17.1.1
Everest-16.6.2
16.6.7a
Denali-16.3.4
16.6.1
Denali-16.3.9
Denali-16.3.3
16.12.1a
17.3.2
17.4.1a
16.12.5
17.5.1
Fuji-16.9.7
16.6.9
17.3.3
17.5.1a
17.3.4
17.3.4a
17.4.2
17.4.1b
17.6.1a
16.6.10
17.7.1a
16.12.6
Fuji-16.9.8
17.6.2
17.8.1a
16.12.7
17.3.5
17.6.3
17.6.3a
17.7.2
17.9.1a
17.6.4
17.10.1a
17.3.6
16.12.8
17.3.7
17.9.2a
17.6.5
17.11.1a
17.9.3a
17.12.1a
17.9.4
17.6.6
17.3.8
17.3.8a
17.6.6a
17.9.4a
17.12.2
17.13.1a
17.9.5a
17.12.3
17.6.7
17.14.1a
17.12.4
17.12.3a
17.15.1a
17.6.8
17.9.6
17.6.8a
17.16.1a
17.9.5e
17.12.4a
17.15.2c
17.9.5f
17.12.4b
17.15.2a
17.12.5
17.17.1
17.12.5a
17.9.7a
17.15.3a
17.15.3
17.12.5b
17.12.5c
17.15.4
17.9.7b
17.18.1
17.18.1a
17.12.6
17.9.8
17.15.4c
17.12.5d
17.18.2

Problem Types

Type	CWE ID	Description
cwe	CWE-835	Loop with Unreachable Exit Condition ('Infinite Loop')

Type: cwe

CWE ID: CWE-835

Description: Loop with Unreachable Exit Condition ('Infinite Loop')

Metrics

Version	Base score	Base severity	Vector
3.1	5.8	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Version: 3.1

Base score: 5.8

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Exploits

The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.

References

Hyperlink	Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3-vbavuls-96UcVVed	N/A

Hyperlink: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3-vbavuls-96UcVVed

Resource: N/A

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Affected Products

Affected

Affected

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References