Detections
Analytics

Multiple Cisco Products Snort 3 Visual Basic for Applications DoS Vulnerabilities (cisco-sa-ftd-snort3-vbavuls-96UcVVed_CVE-2026-20053_CVE-2026-20054_CVE-2026-20057)

medium Nessus Plugin ID 301697

Synopsis

The remote device is missing a vendor-supplied security patch

Description

According to its self-reported version, Cisco ASA Software is affected by multiple vulnerabilities.

 - Multiple Cisco products are affected by a vulnerability in the Snort 3 VBA feature that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash. This vulnerability is due to improper range checking when decompressing VBA data, which is user controlled. An attacker could exploit this vulnerability by sending crafted VBA data to the Snort 3 Detection Engine on the targeted device. A successful exploit could allow the attacker to cause an overflow of heap data, which could cause a DoS condition. (CVE-2026-20053)

 - Multiple Cisco products are affected by a vulnerability in the Snort 3 Visual Basic for Applications (VBA) feature which could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash. This vulnerability is due to lack of proper error checking when decompressing VBA data. An attacker could exploit this vulnerability by sending a crafted VBA data to the Snort 3 Detection Engine on the targeted device. A successful exploit could allow the attacker to cause the Snort 3 Detection Engine to unexpectedly restart causing a a denial of service (DoS) condition. (CVE-2026-20057)

 - Multiple Cisco products are affected by a vulnerability in the Snort 3 VBA feature that could...
 (CVE-2026-20054)

Please see the included Cisco BIDs and Cisco Security Advisory for more information.

Solution

Upgrade to the relevant fixed version referenced in Cisco bug IDs CSCwq23369, CSCwq23372, CSCwq23373, CSCwq23377, CSCwq97494, CSCwq97497, CSCwq97658, CSCwq97660, CSCwq97748, CSCwq97750, CSCwr21406

See Also

http://www.nessus.org/u?39d02a28

http://www.nessus.org/u?73afe95c

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq23369

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq23372

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq23373

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq23377

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq97494

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq97497

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq97658

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq97660

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq97748

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq97750

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwr21406

Plugin Details

Severity: Medium

ID: 301697

File Name: cisco-sa-ftd-snort3-vbavuls-96UcVVed_CVE-2026-20053_CVE-2026-20054_CVE-2026-20057-asa.nasl

Version: 1.2

Type: local

Family: CISCO

Published: 3/10/2026

Updated: 3/11/2026

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS Score Source: CVE-2026-20057

CVSS v3

Risk Factor: Medium

Base Score: 5.8

Temporal Score: 5.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:cisco:adaptive_security_appliance_software

Required KB Items: Host/Cisco/ASA/model

Exploit Ease: No known exploits are available

Patch Publication Date: 3/4/2026

Vulnerability Publication Date: 3/4/2026

Reference Information

CVE: CVE-2026-20053, CVE-2026-20054, CVE-2026-20057