CVE-2026-20058
Improper Error Handling in Cisco Snort 3 Causes DoS
Publication date: 2026-03-04
Last updated on: 2026-03-04
Assigner: Cisco Systems, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| cisco | snort_3 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-786 | The product reads or writes to a buffer using an index or pointer that references a memory location prior to the beginning of the buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability affects multiple Cisco products that use the Snort 3 VBA feature. It arises from improper error checking when decompressing VBA data. An unauthenticated, remote attacker can exploit this by sending specially crafted VBA data to the Snort 3 Detection Engine, causing it to crash.
The crash results in the Snort 3 Detection Engine unexpectedly restarting, which leads to a denial-of-service (DoS) condition.
How can this vulnerability impact me? :
Exploitation of this vulnerability can cause the Snort 3 Detection Engine to crash and restart unexpectedly, resulting in a denial-of-service (DoS) condition.
This DoS condition can disrupt the normal operation of the affected Cisco products, potentially impacting network security monitoring and intrusion detection capabilities.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know