Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.8
Snort 3 Detection Engine: Restart by Malicious SSL Packets
CVE-2026-20005
Summary
The Snort 3 Detection Engine in certain Cisco products can crash and restart if it receives a specially crafted SSL packet. This could cause packet inspection to stop, potentially disrupting network security. Cisco recommends applying updates to affected products to prevent this issue.
Original title
Multiple Cisco products are affected by a vulnerability in the Snort 3 Detection Engine that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart, result...
Original description
Multiple Cisco products are affected by a vulnerability in the Snort 3 Detection Engine that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart, resulting in an interruption of packet inspection.
This vulnerability is due to incomplete parsing of the SSL handshake ingress packets. An attacker could exploit this vulnerability by sending crafted SSL handshake packets. A successful exploit could allow the attacker to cause a denial of service (DoS) condition when the Snort 3 Detection Engine restarts unexpectedly.
This vulnerability is due to incomplete parsing of the SSL handshake ingress packets. An attacker could exploit this vulnerability by sending crafted SSL handshake packets. A successful exploit could allow the attacker to cause a denial of service (DoS) condition when the Snort 3 Detection Engine restarts unexpectedly.
nvd CVSS3.1
5.8
Vulnerability type
CWE-392
Published: 4 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026