CVE-2026-20058

Multiple Cisco products are affected by vulnerabilities in the Snort 3 VBA feature that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash. These vulnerabilities are due to improper error checking when decompressing VBA data. An attacker could exploit these vulnerabilities by sending crafted VBA data to the Snort 3 Detection Engine on the targeted device. A successful exploit could allow the attacker to cause the Snort 3 Detection Engine to unexpectedly restart, causing a DoS condition.

Multiple Cisco products are affected by vulnerabilities in the Snort 3 VBA feature that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash. These vulnerabilities are due to improper error checking when decompressing VBA data. An attacker could exploit these vulnerabilities by sending crafted VBA data to the Snort 3 Detection Engine on the targeted device. A successful exploit could allow the attacker to cause the Snort 3 Detection Engine to unexpectedly restart, causing a DoS condition.

Múltiples productos Cisco se ven afectados por vulnerabilidades en la característica VBA de Snort 3 que podrían permitir a un atacante remoto no autenticado provocar la caída del motor de detección de Snort 3. Estas vulnerabilidades se deben a una comprobación de errores incorrecta al descomprimir datos VBA. Un atacante podría explotar estas vulnerabilidades enviando datos VBA manipulados al motor de detección de Snort 3 en el dispositivo objetivo. Un exploit exitoso podría permitir al atacante provocar que el motor de detección de Snort 3 se reinicie inesperadamente, causando una condición de DoS.