Lucene search
CiscoCISCO-SA-FTDSNORT3SIP-BYPASS-LMZ2THKNHistoryNov 01, 2023 - 4:00 p.m.
Cisco Firepower Threat Defense Software Snort 3 Geolocation IP Filter Bypass Vulnerability
2023-11-0116:00:00
tools.cisco.com
14
cisco
snort 3
geolocation
ip filter
bypass
vulnerability
remote attacker
software updates
workarounds
A vulnerability in the IP geolocation rules of Snort 3 could allow an unauthenticated, remote attacker to potentially bypass IP address restrictions.
This vulnerability exists because the configuration for IP geolocation rules is not parsed properly. An attacker could exploit this vulnerability by spoofing an IP address until they bypass the restriction. A successful exploit could allow the attacker to bypass location-based IP address restrictions.
Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftdsnort3sip-bypass-LMz2ThKn [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftdsnort3sip-bypass-LMz2ThKn”]
This advisory is part of the November 2023 release of the Cisco ASA, FTD, and FMC Security Advisory Bundled publication. For a complete list of the advisories and links to them, see Cisco Event Response: November 2023 Semiannual Cisco ASA, FMC, and FTD Software Security Advisory Bundled Publication [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74985”].
Affected configurations
Node
ciscofirepower_threat_defense_softwareMatch6.7
ORciscofirepower_threat_defense_softwareMatch7.0
ORciscofirepower_threat_defense_softwareMatch7.1
ORciscofirepower_threat_defense_softwareMatch7.2
ORciscofirepower_threat_defense_softwareMatch7.3
ORciscofirepower_2100Matchany
ORciscofirepower_1000Matchany
ORciscoasa_5500-xMatchany
ORciscoindustrial_security_appliances_3000Matchany
ORciscofirepower_9000Matchany
ORciscofirepower_threat_defense_virtualMatchany
ORciscosecure_pix_firewallMatchany
ORciscofirepower_threat_defense_softwareMatch6.7.0
ORciscofirepower_threat_defense_softwareMatch6.7.0.1
ORciscofirepower_threat_defense_softwareMatch6.7.0.2
ORciscofirepower_threat_defense_softwareMatch6.7.0.3
ORciscofirepower_threat_defense_softwareMatch7.0.0
ORciscofirepower_threat_defense_softwareMatch7.0.0.1
ORciscofirepower_threat_defense_softwareMatch7.0.1
ORciscofirepower_threat_defense_softwareMatch7.0.1.1
ORciscofirepower_threat_defense_softwareMatch7.0.2
ORciscofirepower_threat_defense_softwareMatch7.0.2.1
ORciscofirepower_threat_defense_softwareMatch7.0.3
ORciscofirepower_threat_defense_softwareMatch7.0.4
ORciscofirepower_threat_defense_softwareMatch7.0.5
ORciscofirepower_threat_defense_softwareMatch7.1.0
ORciscofirepower_threat_defense_softwareMatch7.1.0.1
ORciscofirepower_threat_defense_softwareMatch7.1.0.2
ORciscofirepower_threat_defense_softwareMatch7.1.0.3
ORciscofirepower_threat_defense_softwareMatch7.2.0
ORciscofirepower_threat_defense_softwareMatch7.2.0.1
ORciscofirepower_threat_defense_softwareMatch7.2.1
ORciscofirepower_threat_defense_softwareMatch7.2.2
ORciscofirepower_threat_defense_softwareMatch7.2.3
ORciscofirepower_threat_defense_softwareMatch7.3.0
ORciscofirepower_threat_defense_softwareMatch7.3.1
ORciscofirepower_threat_defense_softwareMatch7.3.1.1
ORciscofirepower_threat_defense_softwareMatch7.3.1.2
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_virtualMatchany
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch6.7.0 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch6.7.0.1 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch6.7.0.2 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch6.7.0.3 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.0.0 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.0.0.1 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.0.1 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.0.1.1 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.0.2 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.0.2.1 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.0.3 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.0.4 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch5500-X Series Firewalls
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.0.5 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.1.0 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.1.0.1 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.1.0.3 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.2.0 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.2.0.1 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.2.1 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.2.2 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.2.3 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.3.0 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.3.1 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.3.1.1 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
ORciscofirepower_threat_defense_softwareMatch2100 Series
ORciscofirepower_threat_defense_softwareMatch1000 Series
ORciscofirepower_threat_defense_softwareMatch3000 Series Industrial Security Appliances (ISA)
ORciscofirepower_threat_defense_softwareMatch9000 Series
ORciscofirepower_threat_defense_softwareMatch7.3.1.2 when installed on Cisco Secure Firewall Threat Defense Virtual
ORciscofirepower_threat_defense_softwareMatch3100 Series
Related
cvelist
cvelist
CVE-2023-20267
2023-11-01 17:16:02
nvd
nvd
CVE-2023-20267
2023-11-01 18:15:09
cve
cve
CVE-2023-20267
2023-11-01 18:15:09
prion
prion
Authentication flaw
2023-11-01 18:15:00
7.4 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
26.9%
Related for CISCO-SA-FTDSNORT3SIP-BYPASS-LMZ2THKN