{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-20360","assignerOrgId":"d1c1063e-7a18-46af-9102-31f8928bc633","state":"PUBLISHED","assignerShortName":"cisco","dateReserved":"2024-10-10T19:15:13.258Z","datePublished":"2025-10-15T16:19:46.840Z","dateUpdated":"2026-02-12T18:57:32.487Z"},"containers":{"cna":{"title":"Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerability","metrics":[{"format":"cvssV3_1","cvssV3_1":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L","baseScore":5.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"}}],"descriptions":[{"lang":"en","value":"Multiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart.\r\n\r\nThis vulnerability is due to a lack of complete error checking when the MIME fields of the HTTP header are parsed. An attacker could exploit this vulnerability by sending crafted HTTP packets through an established connection to be parsed by Snort 3. A successful exploit could allow the attacker to cause a DoS condition when the Snort 3 Detection Engine unexpectedly restarts."}],"references":[{"url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-mime-vulns-tTL8PgVH","name":"cisco-sa-snort3-mime-vulns-tTL8PgVH"}],"exploits":[{"lang":"en","value":"The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."}],"source":{"advisory":"cisco-sa-snort3-mime-vulns-tTL8PgVH","discovery":"INTERNAL","defects":["CSCwo71401"]},"problemTypes":[{"descriptions":[{"lang":"en","description":"Buffer Access with Incorrect Length Value","type":"cwe","cweId":"CWE-805"}]}],"affected":[{"vendor":"Cisco","product":"Cisco Cyber Vision","versions":[{"version":"3.0.0","status":"affected"},{"version":"3.0.2","status":"affected"},{"version":"3.0.3","status":"affected"},{"version":"3.0.1","status":"affected"},{"version":"3.1.0","status":"affected"},{"version":"3.0.4","status":"affected"},{"version":"3.1.1","status":"affected"},{"version":"3.1.2","status":"affected"},{"version":"3.2.0","status":"affected"},{"version":"3.0.5","status":"affected"},{"version":"3.2.1","status":"affected"},{"version":"3.0.6","status":"affected"},{"version":"3.2.2","status":"affected"},{"version":"3.2.3","status":"affected"},{"version":"3.2.4","status":"affected"},{"version":"4.0.0","status":"affected"},{"version":"4.0.1","status":"affected"},{"version":"4.0.2","status":"affected"},{"version":"4.0.3","status":"affected"},{"version":"4.1.0","status":"affected"},{"version":"4.1.1","status":"affected"},{"version":"4.1.2","status":"affected"},{"version":"4.1.3","status":"affected"},{"version":"4.1.4","status":"affected"},{"version":"4.2.0","status":"affected"},{"version":"4.2.1","status":"affected"},{"version":"4.1.5","status":"affected"},{"version":"4.2.2","status":"affected"},{"version":"4.2.X","status":"affected"},{"version":"4.2.3","status":"affected"},{"version":"4.2.4","status":"affected"},{"version":"4.2.6","status":"affected"},{"version":"4.1.6","status":"affected"},{"version":"4.3.0","status":"affected"},{"version":"4.3.1","status":"affected"},{"version":"4.3.2","status":"affected"},{"version":"4.3.3","status":"affected"},{"version":"4.4.0","status":"affected"},{"version":"4.4.1","status":"affected"},{"version":"4.4.2","status":"affected"},{"version":"4.4.3","status":"affected"},{"version":"4.1.7","status":"affected"},{"version":"5.0.0","status":"affected"},{"version":"5.0.1","status":"affected"},{"version":"5.0.2","status":"affected"},{"version":"5.1.0","status":"affected"},{"version":"5.1.1","status":"affected"},{"version":"5.1.2","status":"affected"},{"version":"5.1.3","status":"affected"},{"version":"5.2.0","status":"affected"},{"version":"5.2.1","status":"affected"}],"defaultStatus":"unknown"},{"vendor":"Cisco","product":"Cisco Secure Firewall Threat Defense (FTD) Software","versions":[{"version":"7.3.0","status":"affected"},{"version":"7.3.1","status":"affected"},{"version":"7.3.1.1","status":"affected"},{"version":"7.4.0","status":"affected"},{"version":"7.4.1","status":"affected"},{"version":"7.4.1.1","status":"affected"},{"version":"7.3.1.2","status":"affected"},{"version":"7.6.0","status":"affected"},{"version":"7.4.2","status":"affected"},{"version":"7.4.2.1","status":"affected"},{"version":"7.7.0","status":"affected"},{"version":"7.4.2.2","status":"affected"},{"version":"7.6.1","status":"affected"},{"version":"7.4.2.3","status":"affected"},{"version":"7.4.2.4","status":"affected"}],"defaultStatus":"unknown"}],"providerMetadata":{"orgId":"d1c1063e-7a18-46af-9102-31f8928bc633","shortName":"cisco","dateUpdated":"2026-02-12T18:57:32.487Z"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-10-15T17:40:52.793084Z","id":"CVE-2025-20360","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-10-15T17:43:48.696Z"}}]}}