Loading
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a flaw in the FTP module of the Snort detection engine. An attacker could exploit this vulnerability by sending crafted FTP traffic through an affected device. A successful exploit could allow the attacker to bypass FTP inspection and deliver a malicious payload.
Use CWE-1039, Cisco vendor hub and Firepower Threat Defense product page to widen CVE-2023-20071 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2025-20333, CVE-2025-20362 and CVE-2024-20412 for nearby disclosures in the same product family. Additional editorial context is available in Weekly Security Roundup: Navigating the April 2026 Threat Landscape and Critical Framework Exploits.