Medium severity5.8NVD Advisory· Published Nov 16, 2017· Updated May 13, 2026

CVE-2017-12300

Description

A vulnerability in the SNORT detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a file policy that is configured to block the Server Message Block Version 2 (SMB2) protocol. The vulnerability is due to the incorrect detection of an SMB2 file when the detection is based on the length of the file. An attacker could exploit this vulnerability by sending a crafted SMB2 transfer request through the targeted device. A successful exploit could allow the attacker to bypass filters that are configured to block SMB2 traffic. Cisco Bug IDs: CSCve58398.

Affected products

Cisco Systems, Inc./Secure Firewall Management Center4 versions
cpe:2.3:a:cisco:secure_firewall_management_center:2.9.10:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:cisco:secure_firewall_management_center:2.9.10:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:secure_firewall_management_center:2.9.11:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:secure_firewall_management_center:2.9.12:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:secure_firewall_management_center:2.9.9:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/101862nvdThird Party AdvisoryVDB Entry
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-firepower2nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.377
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000